Welcome to Incremental Social! Learn more about this project here!
Check out lemmyverse to find more communities to join from here!

Korbs ,
@Korbs@lemmy.world avatar

Support seems much better now.

recarsion ,

Am I the only one who's fine with typing a password?

Aganim ,

Nah, I'm also fine with it. Fingerprint sensors hate me anyway, on every phone I owned I needed to rescan my prints every few weeks or so because they just won't recognise me after a while. These days I just use passwords and pin codes.

ArcaneSlime ,

Nah, the police in my country can compel use of biometrics but not password/key. I refuse to set them up at all.

Outside that even, on like a phone, what if I'm sleeping and a GF uses my finger without consent? It's a security hole imo.

merthyr1831 ,

im sure there isnt a malicious reason why many fingerprint reader drivers are proprietary

Andromxda ,

And I'm sure that there's a completely closed, separated and proprietary subsystem in your CPU that has access to everything happening on your computer. Literally everything, all input and output, everything the CPU is doing, just everything. Look up Intel ME or AMD PSP

baseless_discourse ,

This is why you buy laptop from companies that officially support linux.

thevoidzero ,

System 76 laptop has fingerprint sensor. They don't say it has one cuz it's not supported.

And since it's designed to be used as a tap/scan, and power button only on hard restart/shutdown it's hard to press to stop it being pressed on fingerprint scan, the hardware not being supported means you have to press the power button a lot instead of fingerprint.

Twitches ,

I understand wanting to use this, but, fingerprint reader is so I secure I usually avoid it.

thanks_shakey_snake ,

Is it really less secure than a password? How so?

Gormadt ,
@Gormadt@lemmy.blahaj.zone avatar

If it's compromised you can't change it for one

Also you can't be legally forced without a warrant to give a password but biometric data you can be legally forced without a warrant to give up

foggy ,

Lol let's take the kid gloves off, shall we?

Fingerprints, as a means of authentication, is just straight up not secure.

Bassman1805 ,

Man, I knew fingerprint encryption was bad but that is nuts.

PumpkinEscobar ,

Fwiw they’re able to do the same thing by the sound of someone typing a password across the room. Not advocating for fingerprints or anything, just these exotic hacks are everywhere

foggy ,

This one's my fav

marcos ,

The thing is, one of those attacks requires you to type your password. The other requires you to touch something.

flambonkscious ,

...my memory was that this only worked after the routine had been trained on your typing idiosyncrasies

aberrate_junior_beatnik ,

A fingerprint is a password you leave a copy of on everything you touch.

MonkderDritte ,

Biometric data can be used as login but is unsuitable as password, since it can't be changed once compromised.

bjoern_tantau ,
@bjoern_tantau@swg-empire.de avatar

With a password you can have an exact binary comparison. Either you supplied the correct password or you didn't.

But with biometrics you just have an approximation because your fingerprints change slightly due to the position in which you hold them, your health, humidity, pressure and probably other stuff I'm not thinking of. So the sensor can only say that it's like 95 % or whatever sure that it got the correct fingerprint. And this uncertainty makes it much easier to exploit.

And your fingerprint is not secret. You leave it all over the place. Especially on devices you use every day. And your fingerprint can (and will) be taken without your consent. And you cannot change your fingerprint if it gets compromised.

All those spy movies showing how trivial it is to circumvent biometric security have in common that whatever method they used was realistic.

Twitches ,

Lol my hands are jacked from physical labor and health, scars on my fingers, dry skin, my thumb print only works only 50% of the time anyhow.

henfredemars ,

I use it if only because my wife won't use passwords on her devices. We aren't even at step one for device security. I'll take what I can get, or what she's willing to work with.

acockworkorange ,

Can you get to 2FA with a 4 digit PIN, at least?

onlinepersona ,

Never got the appeal even when I was on windows long long ago. It's not secure.

Anti Commercial-AI license

vox ,
@vox@sopuli.xyz avatar

passkeys?
no need to use the 4 digit pin every single time.

mvirts ,

My old t22 had one that worked perfectly, rip.

OR3X ,

I've had good luck with the fingerprint scanners in various HP business laptops and fprint. The one on my old Dell laptop was straight-up unsupported though.

cygnus ,
@cygnus@lemmy.ca avatar

The one on my ThinkPad started working when I upgraded to KDE 6 / Wayland. I was pretty happy about that.

null ,
@null@slrpnk.net avatar

Oooh I gotta try that

pete_the_cat ,

Oh nice, I have a Carbon X1. I knew that fprintd has worked for a while, and has allowed me to enroll fingerprints, but has never successfully worked for authentication.

cygnus ,
@cygnus@lemmy.ca avatar

That was my issue too, also on an X1C (gen 9)

archer ,

For me it only works for signing in after sleep, but not for anything else (T490). Does your Thinkpad work better/in more ways?

cygnus ,
@cygnus@lemmy.ca avatar

Same, I can't use it in the terminal or anything like that, but it didn't work at all before.

pineapplelover ,

Fprint works amazingly well on my thinkpad. Worked fine for me on KDE Plasma 5 and also works on Plasma 6 for me too.

MazonnaCara89 ,
@MazonnaCara89@lemmy.ml avatar

And that's because your laptop is a thinkpad, indeed I got my fingerprint reader working on my ideapad because it has the same fingerprint reader of a thinkpad, but to get it working I needed to install the driver myself

pineapplelover ,

I guess that's why everybody buys ThinkPads if they wanna use Linux hee hee

LordPassionFruit ,

Weirdly enough, I've never got fprint working on my thinkpad (albeit I've only attempted twice).

Both times, it works fine whenever I only set up my index finger. Adding my thumb (or any other finger) then prevents either from working, removing either finger removes both, and then prevents me from adding it back.

I have no idea why I'm having this issue, but I'm assuming I'm just missing something.

pineapplelover ,

Just use one finger only then

BoneALisa ,
@BoneALisa@lemm.ee avatar

Ive had this problem extensively, but my new Dell XPS' works out of the box!

Ironfacebuster ,

I have a windows laptop with a fingerprint sensor that worked exactly like this lol

I'd reinstall the driver, it would work for a day, then stop working. One day I updated the laptop to Windows 11 and I think it fixed it, but is it worth the ads coming soon? I will see.

r0bi ,

Werks on my Thinkpad X13

Pantherina ,

Same on Thinkpad T495

hperrin ,

I’m really happy that my new Framework laptop’s fingerprint reader worked perfectly out of the box.

OpenStars ,
@OpenStars@discuss.online avatar

Mine works just fine... on my Mac OSX:-).

If anyone is worrying about security, don't use it for that, or at all if you don't want, but it sure is nice to have that option if/when I want.

Seriously, I have multiple layers of security - extremely long & complex & unique passwords plus 2FA for banking, another (different) password and a PIV for work, etc. - and I really enjoy being able to get back into my desktop at a moment's notice after grabbing a coffee. It even enhances security in several ways: e.g. by facilitating using a shorter time-out until the system asks for authentication, plus allows you to use a more complex password for your account, knowing that you won't have to type the whole damn thing in 50 times a day. Also, even if someone had a literal camera over your shoulder watching you type your password (work? public space like library?), they would not get your fingerprint that particular way. Or if you really want to get paranoid (I don't think Mac will let you do this by default without additional software though), you could require both password + fingerprint?

It is also worth noting that the issues for desktops are not identical to those of mobile devices: someone would have to gain physical access to my machine in the first place (afaik? now I wonder about that though... are the security credentials stored in a less secure manner that a remote intrusion could spoof more readily?), which is far less common than a mobile device that you take with you and is also smaller so more easily stolen.

Protect the stuff you value the most, but for the common stuff it is nice to have a quicker method of access. Like everything else, this is merely one tool in your toolbox that you can decide how & when to use appropriately.

  • All
  • Subscribed
  • Moderated
  • Favorites
  • linuxmemes@lemmy.world
  • incremental_games
  • meta
  • All magazines
    •