@mholt6 I mostly agree. Passkeys are all of the best practices from a good password manager packaged into a single unit and forced into a management utility like a hardware device or password manager: opaque ID, complex cred, multiple factors. The diff is the cred stays client side.
@TheJackForge We wanted to buy a MBP for a family member who only needed it for browsing.
Me: Let's get you a new one and hand yours down.
Wife: No, I like my 2020 Intel MBP. Just buy a new one instead of handing one down.
Me, while buying an M1 to give away: ๐
@mholt6 I figured you wanted something more turn-key which is why I'm thinking of alternatives to touching the hosts file, like a browser plugin that sets a host header or a built-in proxy that does the necessary fix up of hostname to IP (note, not DNS) and SNI.