HOT 189: What Are Passkeys? - Google Maps, Roku vs Fire TV, Pixel 9
49:24 Share

Coming up on hands on tech, i've got some questions that I can't wait to answer. First, we talk about google maps and what you can do when IT comes to using IT for bike rounds. We have some questions about home theater, and I get an opportunity to explain pakis. It's all that plus so much more coming up on hands on tech. This is twice.

Welcome, welcome, welcome to hands on tech for the first time. Or if you are a returning list or well, thank you for being here. Uh, this, of course, is the show where I micus surgeon to take tech questions from around the world and try to help you figure out what the hacks is going on, which you need to do to get this problem solved.

Um we mostly get questions in via H O T at twitter TV. That's the email. H O T A twitter, T T V. You can send us an email and we would love, love, love to hear from you.

But as is always the way we have some great questions today and occasionally do reviews of products and boxing that kind of thing. But this is once again a an episode full of great questions. Our first question this week comes in a from martagon, uh, who writes hello, my I have a google maps question.

I am a retired cyclist. The cycling times proposed by google maps are much too fast. Is there a way to adjust the reference speed on the website or the I O S APP? I much prefer the website to the APP because IT allows me to modify the route to the one used in reality is there are a good alternative to google.

Thank you. Um Martin, thank you. You are writing in I did some research on this because I want to to make sure that I wasn't missing anything, because my initial look into google maps itself was not giving me any way to change the speed at which I would most likely ride a bike.

A, in doing that research, I discovered that google maps reportedly assumes ten miles per hour on average for bikers. And that is its calculation for how long I will take you to get from place a to place b. Some people travel faster.

Some people travel slower. The average is ten miles per hour. Now there is currently no way to change that average speed that is part of google maps. You just have to roll with IT, if you will.

And so if you want to um you know make your speed different, you would have to uh go in and actually just kind of do the math in your head. Okay, this is on average ten miles power. I need to add x amount of time to this based on my own ability to you know travel along around.

If you are looking for a different option, there are two options that I saw pop up more than any others. Uh, one of those is a pretty popular APP called streva. Uh store va is kind of an all purpose APP that one of its main features is biking.

But IT also does sort of jogs and hiking. Um IT involves GPS control being able to to see where you're going. But he also measures performance that has that kind involved with IT as well.

So you can use straw a to plan out a route to uh determine know where you're trying to go. And then also you can keep track of your performance over time. You can get information about what is your average compared to what google suggests.

So IT is a good way to to go about doing that. The other APP that I saw, oh, that's a straw, a dot com. The other APP that I saw that was getting the most attention was an APP called com te K O M O O T H in this APP is specifi C2Biking.

IT has ready built out. You can also plan out your routes. You can say, you know how fast you're planning on going. IT has different kinds of biking methods.

So depending on if you're doing road cycling, if you're using a you know the sport bike, however, IT happens to be and that way I think this is probably the one that I would start with a is commute at K O M O O T dot com. And then if you don't like IT, then try straw a as they kind of more popular, more well known option. But mata, I completely understand this idea that, look, google has this average and it's nothing like what I am actually going to do. The problem is, of course, that you know depending on the conditions, depending on the route, depending on where you're planning to, I mean, there are load different, easier bike tire a little bit flat versus not.

I can imagine that he was very difficult for google engineers to figure out what should be the sort of time for anyone if they're using a bike ah and I definitely see that giving someone the option to um say i'd like to change that is good but that also means martov that now that you know that ten miles per hour is the average that they use, you can use that to do a little back of the napkin math or front the napkin math, depending this matter a to determine what IT would be for you. So if you know yours average speed, you can kind of adjust google suggested and predicted time according to what you need. Yes, as wizard dlink has said in the chat, a math to the rescue.

We love a bit of math. absolutely. All right, let us move on to our next question. After A A little p of this quarter, is water maybe alright? Michael is written in and Michael says, I have a 4KTCL roku TV not a super highline one， but IT works well for me.

I'm very close to viewing as it's in my home office that I can just swim my chair and be about three feet away from the screen. I also have the most recent amazon fire stick, which I think came out last year. I go back and forth with them, but i'm wondering if there is any difference between video and audio.

The audio system I have is a TCL sound bar with a subway for IT sounds great. It's a small room, so it's all I need there. But is there a difference between watching IT on the native roku TV versus the amazon fire T.

V stick? This is a really interesting question, mostly because this is a question that is very difficult to say with all absolute certain team. And so given that it's difficult to say with all absolute certain team, i'm going to kind of give you the thoughts related to this.

If you've got a name is on fire TV sticks and you've got the fork model right um then that is going to a be a really high quality experience. But there are different things that can come into play here when IT comes to a watching directly on your 4KTCL roku TV via the built in apps VS using this fire T V stick IT can depend on content distribution deals and IT can depend on APP support。 okay.

So let's let's kind of get into this little bit more. When you have A A T V, A smart TV that has built in apps, those apps are obviously purpose built for that machine. The content on those apps are distributed with the knowledge of the devices on which they are running, right? And so the built in experience is going to provide the means to sort of put the the hardware through its paces, right?

You are able to kind of count on being able to watch a show and have IT be in that 4KHDR if it's if it's offered in 4KHDR and if you're using your sub wafer ah and your TCL sound bar and you are looking for the best experience in terms of sounds and everything and you want to make sure it's working up snuff again， here you can more likely count on the TV itself being able to do all of those things. However, with an external device like this, uh, fire T V stick, there are things that the fire T V stick might have that you think you're worth using like that fire T V ambient experience. That's one of the things that the fire TV has.

So there may be a reason why you're interested in using that third party, well, sort of third party option, right? And if that's the case, that's totally okay. But keep in mind that there may be some apps that run on the amazon fire T, V stick that aren't properly sending along the signal that is necessary to make the sound bar pipe out the right audio and that, I could know, sort of defaulter dropped down.

The IT could be that the television is having no trouble via the fire TV sick displayed content and fork, hey. But maybe the HDR or the doubly vision is not getting piped through properly. So on the face of IT, you're probably not going to see a difference, but there could be some compatibility issues that you come across if you're worried just in general that okay.

Today I switched over to the fire T V. Stick and i'm watching. And am I actually watching IT at the best quality if it's not something that's glaringly obvious to you, Michael? And I think it's safe to just say, you know what, it's working.

It's fine. Everything's good. I like the experience that I have here, and I don't need to worry that i'm not getting the best possible thing that I can at that point at country.

Comes down the taste. Do you like the rocca option? Do you like the built in features that that the rock U.

A service has? The apps, the use, the user interface, the U. I. Is that what you want to use? Or do you like what amazon has to offer plus the integrations that amazon might have? I don't know if you use IT with alix a for example, or if you've got the fire T V stick that has, uh, wifi six support and therefore, you've got a router that has wifi six support.

And then that is one place where there would be a difference because the the sticky of pluggin might be able to load a netflix video faster and in higher streaming resolution quicker than the television that has a slower wifi card in IT, unless, of course, you have a plugged in via either net. So there are all of these little, tiny things that come in to play when making the decision of what works best. But I am not of the opinion, unlike some people, that IT is IT is necessary and important to set things up so that you have the one.

Am I trying to saker, how do I want to word this? What was was under this? If you can tell the difference, if you are not unhappy, then it's fine. Don't worry about IT. As opp posed to being a sort of more more, you know very focused on am I getting the best possible pixel that I possibly can get is, is the best possible view that I can possibly get. If you, for whatever reason, want to switch between the two and it's not upsetting for you, then you're good.

You know, it's it's not anything that you need to worry about, but learning those considerations in mind that what you want to know when IT comes to using the four k TCL ocd v and the amazon fire TV. stick. All right, we've got some more questions to get to, but I do want to take a quick break to tell you about our sponsor of this week's episode of hands on tech, and that is cash fly for more than twenty years.

Cash life is on a track record for high performing, ultra reliable content delivery, serving more than five thousand companies in more than eighty countries at what we here have been using cash fly for more than a decade. And we love the lag free video loading, the hyper fast downloads, the friction free side and interactions. It's all superb casually.

It's the only cdn it's built for. Through put, you get ultra low lencs video that delivers video to more than a million concurrent users, lightning fast gaming that delivers downloads faster with zero lag or glitches or outages. Mobile content optimization that offers automatic and simple image optimization, uh, so that just like you know, can load faster on any device, plus flexible month to month billing for as long as needed and discounts for fixed terms.

In fact, once you're join, you can design your contract when you make the switch to cash. why? Cash fly has several exciting updates to announce, by the way, a saml sso.

So cash fly now supports security assertion, market up language that saml for enhanced secure authenticity and seamless single sign on integration. That S S O. You can now integrate your cash line log in with your choice of identity management platforms like oca.

Multiple origins, otherwise known as multi origin, are using path and extension filters. You can now easily enable multiple origins on a single service. And the new status code is in beta. It's a new status code report and analytics, so you'll be able to view reports based on detailed status codes at five minute intervals each pop, each service and group, easily showing when your service experiences a high number of errors and pinpoint time in location. So yeah, cash fly is always staying up to date with new technologies and new features.

And IT delivers rich media content up to how much one hundred fifty eight percent faster than other major cdn and allows you to shield your site content in the cloud, ensuring a one hundred percent cash hit ratio. And with cash lies elite p managed packages, you're going to get the VIP treatment. Your dedicated account manager will be with you from day one, enduring a smooth implementation, reliable twenty four seven support when you need IT.

So learn how you can get your first month free at cash fed outcomes slashed twit, that's C A C H E F L Y dot com slash tweet and we think cash fly for response ing. This weeks episode of hands on tag all writing our next question comes in from lina lae rights and says, I just got my pixel 8 pro。 I store all music in a folder named music with sub holders for individual artists, and sub holders below that for individual albums.

Wo, i'm impressed? Sin, I do not do that at all. I let IT all get managed for me black, as I use musical, at which is the word music.

Then o left at the end. I use music, collect as my music player. Now I know how to shuffle songs within an album.

But here's the question, is IT possible using shufu mode to play all songs of an individual artist? Do you recommend a APP without subscription fees that can do that? So basically, what lane is saying is, look, when I because of my sorting methods, if I go into music and I go into an artist and then I go into an album, now that folder is just a list of songs.

So it's easy to tell the music player to shufu those songs. But if lane is looking to suffer the songs of an artist because that folder just has sub folders underneath, its the APP doesn't seem to be able to do that. And so the answer to your question is the same answer that I gave to someone with a similar question recently who is trying to do IT from windows focus.

Android also has V L C. V L C is available for the android platform. So what i'm onna recommend to you, deer lane, is to check out VC for android. IT is a full port of the V, L, C media player. So IT works like IT does in other places.

And that means that you are able to actually play through your different artists and be able to huffle those songs so you would create your playlists. You would be able to set IT up however you want to. And what IT does is handle the part of reading from that media library that you've provided and then using that to populate the list that you have.

So you don't need to do, because there are of two ways of doing this. There are systems where you kind of just import your music and then IT organized all of your music for you. And IT sets IT up in the methods that is, chooses with folders and sub folders and sub folders and sub folders.

Or there's the option of what you've done playing, which is to do with yourself and then point and APP at IT. But if that APP doesn't have the functionality to understand the organizational method and know that within those folders are music and you should just populate this list with that music, okay, but V L C is going to be my best bet there. But of course, one of the great things about this show is that once this is out there, people will often write in and say, oh, I heard you talking about this a topic, and here's what I use.

So I do promise, lane, that if you are having issues, or rather, if someone writes in to let me know the APP that they use to do the same thing, i'll be sure to let you know. But as IT stands, yeah, I think V L C is probably an option for you. Although I have heard according to the chat scooter access, that musical letter is pretty popular out there.

So that's interesting. And of course, that one of the features of IT is this is just your local music library when I messed with all that stream and nonsense, I get that. I get that name.

All right. Our next question comes in from john, john Wilson and says, I am trying to connect legacy hardware to an iphone hot spot, more specifically a gov. Tep monitor.

H five o five one, wifi, two point four giga her only supposedly uh john rights maximized compatibility supports two point four giga hurts IT won't connect any tips or tricks to get IT to work. First of all, I want to say something here, which is that this show has taught me something interesting. I was a holy and totally unaware of the number of people who use their smartphone hot spot as their network for their home blues.

My mind, I think about people who use A A specifically purchased little hot spot from A A career, or they get home wifi through a career. But the number of people who are attempting to set up like full networks in their home from a hot spot is mind boggling. I've received so many questions uh, over the time regarding hot spots.

And when I think of hot spots, I think of i've got a laptop and I mounted about and I want to connect my laptop to the internet, or I I have a phone with an unlimited data plan with a hot spot. My friend only has a gig of data. You can connect to my hot spot and keep all, or my child has an ipad that's just wifi, and I connect to that to that.

But wow, people use their hot spots on their phones as, like, full on networks. And that blows my mind. Anyway, thank you, john. And to the other people who have written in to tell me about that because IT is fascinating to me. So let's take a let's na talk about this. Um you are correct, uh, john, in making the choice to first and foremost do uh the option of going in and turning on maximize compatibility.

So maximize compatibility is a setting in your iphone e's personal hot spot that tells the phone do not offer up five digger hurts uh as a wifi connectivity option, only two point four giga hurts and that way devices that don't have access to the five giger shen or unable to access IT and IT doesn't get in the way of those devices that can only connect in that way. Now, when IT comes to this, what do we, what do we need to do? What are some options? Well, I think the biggest thing you can do, and the one thing I was able to come up with for this, john, is to launch the settings APP and go into cellular on in the iphone settings and then go into soluble data options in secular data options.

Check to see if your iphone has a feature enabled called limit I P address tracking. This is a feature from apple that is also known as eyes cloud private relay and IT does some stuff in the background to kind of bounce around your your connectivity with the internet to mask your location and keep Better privacy for you. And I have found that while IT is a great feature for privacy reasons, IT is also really annoying when IT comes to, uh, compatibility issues.

There are times where IT is responsible for something not being able to connect. So my suggestion is going in there and making sure that is tagged off while you're trying to uh, connect the gov. E tempo monitor and then turned IT back on after that.

All done outside of that, despite my research, I was unable to find any other way to get an iphone hot spot to appear and connect with a device. That is two point for bigger hurts only. Um everything i've read suggest that I should connect just fine.

So the fact that it's not connecting obviously is an issue and that's the one place I could think of that would be responsible for IT having trouble connecting because any of the other things that you would do with a router where maybe you have got W, P, A three enabled, which is great for newer devices, but is the pain of older devices or you have A A hidden network instead of a network that's available or you thought you turned off the five gig hurts, but it's still on. That's all router stuff that you do. That is not something that you have access to control on the iphone when you're using IT as a personal hot spot.

So limit I P address tracking is the one place. Um I can recommend me making that change if you are still having issues after this. John, my next tip or trick is to reach out to gov because IT perhaps there's something wrong with the car, the wifi car, the wifi chip rather in the gov.

E temple monger. And if that's the case, maybe we will be able to help you replace IT or they've heard about other people having issues as well and IT needs to be changed there. So yeah check with that gov. E tep. Monitor and know as a Michael has said in the chat on youtube, a Michael says could IT be a firm word setting um doubt that is a firm where setting, but IT could be a firm where issue, meaning that IT is used.

That is a legacy device if it's old enough, maybe that from where is just out of date and therefore it's not able to uh connect with a more modern hot spot even though the hot spot is set to the two point for a giga hts, a legacy mode so or maxim compatibility mode. I would love john to hear back from you after you try these different options. So please do write back to let us know what ended up working out for you because as I said, i've discovered that and lots of people out there using uh, their iphone hot spots as their home internet network, which again just boggles the mind.

You'd have to keep the plug in at all times, wouldn't you? And like lots of cellar Carriers love to slow you down after a while. So maybe you just have a small network.

I know, you know what? This is another thing. H, R, T, A tweet that TV, if you use your phone, your smart phone, as your cellar network at home, your home network right in.

And let me know I got questions. And i'd love to be able to share that with the listeners that I think it's just it's it's an interesting thing that I had not really considered as a thing to do always. Um I do have my iphone set as a back up internet connection if my internet ever goes out. But that's the extent of that I have not gone past that.

All right, let us go to our next question, which comes from tod todd write in. Actually this isn't this is a little different because todd wrote in to me via my tech news weekly show, tnw, twitter TV was the email that todd used and todd was writing about um a couple of episodes that i've done where we have talked about package. Many of you out there know what past keys are.

okay. So this is this is just for you to not along with um but taught some questions regarding pass keys. And it's funny because I had a friend recently he was visiting who said, so what our past keys and I had the very complex answer and I wanted to break IT down, make a little bit simpler er for todd.

So todd, get ready listening in but let me go and read your question. You talked on this show, by the way, that show techniques weekly and other show is about a psi love. This says about, uh, pasi. But I still know what a psi is. I understand using names and passwords.

The old way IT is text that I enter into a field on my computer or phone, and that I keep on a post and note tape to my computer monitor or my case, send outlook contact, use the names of passwords I get. I know what they physically are and how to use them. But after listening to two of your shoes on, I still know what they are, how they're used or how they're generated at setting up.

Is that a physical key that I keep up my keyring? Who generated what is IT a bunch of text like a password? And again, who generates this me or amazon where i'm shopping or other websites that I buy stuff from? Beautiful question, todd, and let's get into IT.

All right. So todd asks first and foremost um isn't a physical key well, todd, no, IT is not a physical key. There's nothing physical about IT.

You can't put IT on a key ring. IT is a digital IT is a digital credential. IT is A A string of of of characters that is stored on your device and it's usually on your phone or on your computer. IT is not anything physical.

The confusion of that comes from people being aware of the fact that there are physical keys, like a, like a ube key, that you plug in to authenticates yourself and knowing that ubique are fight compliance and everything else is involved there, IT gets mixed up. So I can understand why you would think that there is a physical key. There is not a physical key.

That is just because when we talk about this authentic ation stuff, we talk about them kind of all together. Now, what exactly is a pity? A pasty is a series of characters that is unique to each type of log in that you do. Your device generates this unique series of characters and keeps you safe for you.

So let's say we're back in the times of of a provision and you are going to a speak easy and you need to know the secret phrase okay, when you go to the speak easy for the first time, um you prove you are who you are the speaker easy says, okay, you're you and I trust you and you see in call so you could come in and then as you're coming in, you're you're handed a little actually know you yourself have kind of a little um secret phrase and the person on the other end that running the speak easy has another part of that secret phrase OK and then the next time you go to the speaker easy, you say your secret phrase and they compare IT to theirs. And if the two lineup this this metaphor is going to break a part a little bit. But essentially what we're talking about, this this credential, it's kind of a secret phrase, but it's just a secret phrase that computers understand what's good at that you want, again, into the speak.

easy. This is what's generated at that moment. okay. And then the way that you this is where the other confusion comes in, is that people think that your pin or your fingerprint or your face is your packy. And that's not the case.

In order to access the pity that has been created, you show that you are you. And so the way that you show that you are you is by scanning your face, typing in your pen or putting down your fingerprint that says you're you, you can access your packy now. But it's the past itself that actually serves as the means of showing that you gain x as that you cool, that you get to walk into the speak easy.

So who actually generates this past right? Is IT the speak easy? Um you know public facing is the person at the door of the speak easy or is that you yourself well, when you set up an account is that you go to amazon and you already have an account, okay, you already have an account.

You log in with your your user name and your password. You go into amazon settings and you say, I want to set up a asking when you do that, your device, your phone, your computer, whatever is going to create a string of characters. And the string of characters has two parts.

okay? There is the private part that you keep in your pocket. This is the part of the device that you have your phone, your computer IT holds on to. And then there's the public part, let's call the public key, and that gets handed to the website. And the website says, excuse me, that public key with your account.

So if it's an email, you know, booze hunter three thousand hit g mail dot com trying to get access to the speak, easy, that public part of the key gets handed over. Zx three, one, seven, four blub buba block they hold on to that you have your private part. And here's the thing, your private key is never shared with.

The a site is holding under the public key. So amazon does not know your private key and never will. Instead, what happens is that when you log in, the site says, okay, this is your email boost under three thousand A G mail dot com, you're trying to get access to the speak easy.

IT looks at the public key. And IT says, right, based on this, you should be able to answer the following question. And then IT gives your device sort of a riddle, and only a device that has that private key you're keeping in your pocket is able to solve this riddle.

And so then the site says, okay, you properly solve the riddle. You can come in. IT uses the public part to verify with your device that has the private part that they match and that everything is good and that you are truly you.

Now when you are logging in to amazon, to google, to microsoft, to whatever is using the packy, the confusion that can come up is, oh, i'm taking my finger. I'm putting IT down on the fingerprint reader. Oh, i'm looking at IT at scanning my face.

That's my password. No, you are proving to your device that you are you so that your device can actually share that information, can chAllenge that information and make sure that you are able to log in. So I want to kind of step back because I do have a habit of going into metaphors.

There can be a little confusing um and so let's just take a look at this from the start. We're gonna make IT simple. Let's say you have never had an amazon account before.

You go to aim zon that com, you sign up for an account and you set IT up with a passing. So you give IT your user name and you say go out and generate a packy using my my email addresses, everything and you're doing IT from your computer. Your computer a has a password manager that supports package.

And in that moment, when are to asks, do you, anna, set up a passing for a logging for this? Then how can we do that? Okay, all I need to do is say yes.

And your computers password manager generates that private key that IT keeps in its pocket, gives the it's almost like taking a piece of paper with a long string characters on IT that they're going to be people were very, very knowledgeable, but this who are cringing ing right now. But i'm trying to make this simple long screen characters on IT. We're ripping IT in half and never showing that private part to the other site, sticking the half that is private in the pocket, handing over the part of public to the site.

Now they've got that right. Amazon has the public part, then you leave amazon. It's been long enough so you get logged out because the cookie has expired yet.

Come back, you try to log in and IT says, okay, you're telling me your email and I see that i've got this public key. You handed me that half of the the paper. Let me look at this public key.

This string of characters means that you should be able to answer the following question if you have the private key in your pocket, because that's what gives you the ability to decoder ring this chAllenge you your device uh, in this case we remember we said we're doing on the computer, uh, gets that chAllenge, that riddle and your, uh, your password manager looks in its pocket and says, oh yes, yes, yes, yes, yes the answer is the blue moon at midnight and IT goes back and the website says you got IT. You're in, you're you you can visit the site and you're log in. So that is a little bit about how and where the paci is generated, what pasty pairing is and kind of the authentication process that involved.

And thank you for sticking with me through the prohibition metaphor to what I feel like is the Better metaphor, the end. So your next question was, how do you use IT? Well, using IT is as simple as going to the website wherever you or that the service and when you're prompted because you'll actually get prompted to uh, you to log in with your packy, everything should kind of happen automatically. But there may be a button that says logging with paci and depending on what site or whether what service you're using to store your past IT can be more or less automatic if you're using a password manager like one password. One password, by the way, is the sponsor network, uh, which is the the passing manager that I use.

I get a little prompt up in the top right corner that says, use your basket to log into this I say yes and then one password says, okay, i've got that private key in my pocket but i'm not going to show the website the answer to the riddle unless I know that you're actually you so can you type in your for the password manager? Or in my case, I just have to do a fingerprint scan. Then he goes, okay, you're actually my cap.

So now I can answer this question for you. The riddle, the answer to the ridal to get actually get into the site. Uh so how do you use IT? You just go to a site, you log in after you set IT up and you are able to uh access IT by handing over the answer to the and then last but not least, the question is how secure is IT? Well here's the beauty .

about pakis.

Um I had a great conversation with Steve gibson about this one time when leo was out was hosting security now in his place and Steve said there's something unique about the past the situation, which is that typically when something is easier than the method that came before IT IT means that we are giving up a level of security for the convenience. And so because that's the typical case, one would expect that the ease .

through .

which we can log in using pakis means th Epaces a re l ess s ecure, right? It's too easy, so they must be less secure. That's how IT usually works.

If i'm trying to get into my house and I only have the lock that's part of the door knob rather than the lock is part of, nor ob and the dead bolt and the two locks that I have above IT, that's less secure, my i'm able to get to the door much easier than if I had those extra locks. This is one of those rare cases. Steve points out that he is both more convenient and more secure. Then your standard method and that is because .

think about .

many a data breach out there. I'll use one great example twenty three and me um they used a the people who access twenty three me information used a technique called credential stuffing. And that just means they tried to a bunch of using names and passwords and found ones that actually worked.

And that is because people are reusing passwords. And so one site gets breached, they use that password on another site. And then the person they looking access to all of them, right? Well, yeah make sense that what happen.

And so that's where pu da random passwords generated by password managers are safer, right? Because then you don't have A A password that you're reusing across sites. So people say, well, let's do that.

Let's set up sudan and passwords. Now we look and we see that the next type of data breach is going to an insecure site or less secure site or perhaps is a very secure site. But they figured out some some method of social engineering to gain access to the site, and they steal user names and passwords.

And they gain access to that because that site is holding on to your user name and your password. So now IT has that information, the the bad actor has that information. They can get in, right? Let's think about pakis with package.

If someone were to go to the site and steel the user name and the pi that's tied to IT, they only have that piece of the paper that I ripped in half. That's the public half. They don't have the private half.

Without the private half, they're not able to access the account. They don't have the necessary bit the decoder ring to solve the riddle to actually gain access to the account, and they need that in order to gain access to the account. So pakis are inherently more secure because of that.

Another reason or more secure is because it's much harder to give away a paste then IT is to give away a password. So with that, the fishing attempts are are less the the ability to access those package or less without that private key. It's much harder to gain access to that account through these more standard means.

And those more standard means of of bad actors are used more frequently because they're easier then having to devote resources toward talking to someone over a period of time, gaining their trust, then getting their using name and passed or that way, much easier to go and steal a database worth of passwords and usernames ah because you can, you know, do that once and get access to a lot. So how secure pasques? More secure than passwords, more secure than suda random passwords and arguably more secure than photo random passwords pared with two facts in casion.

Um there are some cases where packs are just used as a means of two fact radically. But over time, we're going to see more and more the use of pakis as just that single mean means authentication with some other form of two factor like an old generated code if you want IT. So todd, I want to thank you so much for asking this question.

Um I want to think those of you who have written in the chat that this was a good explanation the end because I did get worry there when we got lost in that metaphor but we came around to IT and I am looking forward to a hearing back from you a taught on if you feel like to understand pies at this point folks believe IT or not that is going to bring us to the end of this episode of hands on tech. I want to think those of you who have written in with you are questions agt a tweet that TV thanks so much for the time. Uh, I appreciate IT.

If you've got questions, i've got answers. And I am looking forward to answering those again soon. I want to take a little moment here to mention club twitter, twitter TV ssh club twit, join the club, it's just seven dollars a month. And when you join the club at tweet TV such club twit, you can access to the a tweet plus bonus fee that has extra content, you won't finding else behind the scenes before the show, after the show, special clip to the events get publish there.

Access to the members only this cord server, a fun place to go to chat with a fellow club twit members in those of us here at twit, and access to add free versions of all of our shows, access to the video versions of our club, twitch shows like IOS today, hands on mac, hands on windows, on entitle linux show home theater geeks are all that is available. And by the way, for a limited time, we are offering new users, new subscribers. Are a couple weeks free of clubs win? So if you have a friend who's been thinking about doing IT, and I haven't done IT yet, well, you can join for free to try IT out tweet that T V slash club twit, give IT a go.

Um I think you will have a lot of fun, and I think we will see a stick around which I absolutely love. For those of you who are club to IT members who are watching right now, listening right now. Um you can also check out our referral program, twitter TV flash club twit slash.

When you head there are you will be able to get months of club twit for free by bringing in other listeners fewer subscribers. It's that a so check of that out as well. Twitter TV lush club switch is seven bucks a month. Thank you, everyone, and I will catch you again next sunday for another episode of hands on tech. 拜拜。