A place for developers to talk about building on Farcaster.

/dev

I don’t mind magic links, but I prefer either oauth or regular email/password. That said, magic links are a mild annoyance rather than a great evil some people make them out to be.

I don’t mind magic links, but I prefer either oauth or regular email/password. That said, magic links are a mild annoyance rather than a great evil some people make them out to be. https://recyclebin.zip/posts/annoyinglinks/

Writer. Building @pinatacloud. Working on simple static site hosting https://orbiter.host \ https://polluterofminds.com

What’s most annoying for me is having to dig through old emails to find the email alias I used because it wasn’t recorded in my password manager.

/frontend dev・founder/decentralized data wrangler /blockhead・UI/UX abstractionist・DeFi/web3 builder・dropout・24・prev /dydx, ritual.net・x.com/darryl__yeo

do you guys reckon email is a more secure "temp password" (aka. magic link) endpoint that SMS (given the SIM swap attack vector)?

I'd much prefer to get a 4-6 digit code on my phone than crack open my email client?  Unless that's actually a weak security hole...then defn. not....but (?? 🤷🏼‍♂️)

{ctx: my pref would be password manager, or pass-keys ... but in this context of sending temporary door-openers }

🐵 ← 🙈🙉🙊 → /phil →  phil.cockfield.net, db.team →  
ƒ(🌳) →  🧫 /sys  ←  @cell <T>

Email is better than risking a SIM swap attack for sure.