2 comments

[ 2.6 ms ] story [ 18.6 ms ] thread
(comment deleted)
This resonates. Auth keeps getting more “secure,” but the failure modes are brutal for real users. We’re great at keeping attackers out and terrible at helping legitimate users recover when something goes wrong.