|
FastMail Forum All posts relating to FastMail.FM should go here: suggestions, comments, requests for help, complaints, technical issues etc. |
|
Thread Tools |
14 Aug 2024, 01:16 PM | #1 |
Senior Member
Join Date: Jan 2010
Location: Melbourne, Oz
Posts: 144
|
Passkeys
Fastmail has apparently introduced passkeys in production.
I just successfully created a passkey. But it doesn't seem to be possible to log in to Fastmail (the passkey is not recognised). Don't delete your password yet! |
14 Aug 2024, 02:18 PM | #2 |
Cornerstone of the Community
Join Date: Feb 2003
Location: UK (East Anglia)
Posts: 753
|
It just worked fine for me.
Edit: It made me wonder whether some ways work better than others. I'm using webmail Firefox and the passkey is stored in the Bitwarden addon. It's worked both in beta and production. Last edited by Fenman : 14 Aug 2024 at 02:42 PM. Reason: Additonal info |
14 Aug 2024, 03:08 PM | #3 |
Member
Join Date: Aug 2023
Posts: 84
|
I tried reading about Passkeys but still do not understand. Explain what and how you can.
|
14 Aug 2024, 04:21 PM | #4 |
Senior Member
Join Date: Jan 2010
Location: Melbourne, Oz
Posts: 144
|
I'm using a Firefox fork 'Floorp' and Bitwarden.
Earlier I got the message that the passkey wasn't recognised (can't remember exact wording). Now I get "Could not connect to server." when using the passkey, but I can log on quickly and easily using my userid and password. Teething problems, perhaps. |
14 Aug 2024, 09:27 PM | #5 | |
Cornerstone of the Community
Join Date: Dec 2017
Location: Scotland
Posts: 505
|
Quote:
Also, do you understand anything of how public key cryptography works? See: https://en.wikipedia.org/wiki/Public-key_cryptography |
|
14 Aug 2024, 09:32 PM | #6 |
Senior Member
Join Date: Oct 2015
Location: Singapore
Posts: 172
|
As far as I understand things, it seems you need very recent versions of operating systems (in the Apple ecosystem in particular) for passkeys to work.
Is this correct ? |
14 Aug 2024, 11:51 PM | #7 |
Cornerstone of the Community
Join Date: Jun 2004
Location: Rupert, WV
Posts: 892
|
|
15 Aug 2024, 02:50 AM | #8 |
Cornerstone of the Community
Join Date: Jun 2004
Posts: 749
|
It worked for me using Safari and 1Password. I already had a passkey set up to be used as a security key for 2FA, so I had to remove that one from my account before creating the passkey for login.
When I created the passkey, 1Password replaced the old one I had stored. I logged out and then tried to log in again. I was prompted to use the passkey to log in to my account, and it let me right in. ETA: I just verified that the passkey works in Firefox, Brave, and Arc as well. Last edited by placebo : 15 Aug 2024 at 02:57 AM. |
15 Aug 2024, 02:54 AM | #9 |
Cornerstone of the Community
Join Date: Jun 2004
Posts: 749
|
I think this is true if you want OS-level support for passkeys, like being able to share passkeys between devices using iCloud Keychain. But if you use a password manager, like 1Password, which doesn't use iCloud for synchronizing, I expect you can use older versions of the operating system on which the password manager can run.
|
16 Aug 2024, 09:04 AM | #10 |
Senior Member
Join Date: Jan 2010
Location: Melbourne, Oz
Posts: 144
|
Working now
My Fastmail passkey (same one I created a few days ago) is working this morning.
Still using Floorp and Bitwarden. Yay! |
16 Aug 2024, 12:27 PM | #11 |
Member
Join Date: Nov 2010
Posts: 79
|
Some more details about passkeys in the help file: https://www.fastmail.help/hc/en-us/a...44335-Passkeys
Passkeys seem like such a niche solution that it's hard to imagine wide adoption, but then again so did 2FA not that long ago either, and now that stuff is everywhere. |
17 Aug 2024, 09:03 AM | #12 |
Master of the @
Join Date: Feb 2017
Location: USA
Posts: 1,814
|
What I don't understand is why passkeys are supposedly more secure when you still have the option of using a username and password to login. Doesn't that mean that hackers can bypass the passkey and get in the old-fashioned way? I tried passkeys on several accounts, but they just seemed like a hassle with no additional benefits. In every case they were used as a possible 2FA factor but you still needed alternate methods of logging in or 2FA. Using Linux, I was never able to get Google to let me log in using just a passkey. Plus, more than once the passkey logins just failed.
|
17 Aug 2024, 10:08 AM | #13 | |
Senior Member
Join Date: Jan 2010
Location: Melbourne, Oz
Posts: 144
|
Quote:
The idea is that you should delete your username and password access, so that a passkey is your only option. Then your account is more secure. But, of course, it would also mean that you are totally dependent on your passkey. No fall-back alternative if you lose it or corrupt it. I feel more comfortable with a passkey and with a userid/password with 2FA as a backup. I am inclined to think usernames and passwords are too well entrenched to be replaced by passkeys. I think passkeys would only take off if the big sites (Google, Microsoft, Apple, etc) enforce them. |
|
17 Aug 2024, 10:45 AM | #14 | |
Member
Join Date: Nov 2021
Posts: 80
|
Quote:
|
|
18 Aug 2024, 03:19 PM | #15 | |
Member
Join Date: Aug 2023
Posts: 84
|
Quote:
I read some of it, and reached and read into the part, "What are passkeys and why are they better than passwords?" Then the first paragraph there I do not fully understand. Part of the stoppage of my understanding, is that I use my username and password to verify "It's Me". I never expect these to change unless I make the change and only rarely. I do not know do not understand how public key cryptography works. |
|
Thread Tools | |
|
|