• nine_k 18 hours ago
    In short: use passkeys for high security, social loginsfor convenience, magic links for low-stakes stuff. Eschew SMS. Login + password is still okay as long as the user runs a password manager with generated passwords.
  • wizzard0 17 hours ago
    one-time codes are better than magic links imho.

    think a minimal, clean work pc and email on the phone.

    can also do both ofc.

    [-]
    • arkenoi 12 hours ago
      can be phished and require more interruptive activity