Wouldn't this be easily bypassed by, say, picking up a hair on a street and fabr... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		n4bz0r on Dec 1, 2022 \| parent \| context \| favorite \| on: Lastpass Security Incident Wouldn't this be easily bypassed by, say, picking up a hair on a street and fabricating the token? If so, at least bad actors won't have the incentive to cut off your finger or pull an eye out as with the other biometric authentication options :')

nottorp on Dec 1, 2022 [–]

That's how the voodoo doll myth was created.

And to the OP, any shared secret that you cannot change in case of compromise is kind of a bad idea.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact