Nachdem die Nitrokey 3A Mini offenbar so billig produziert sind, dass mir gestern einer beim simplen Abziehen von einem etwas festeren USB Port in seine Einzelteile zerfallen ist, habe ich beschlossen, auch den anderen einzumotten und komplett zurück zu Yubikey zu wechseln. Die Dinger sind unkaputtbar und auch IP68 zertifiziert. Nutze ich schon seit >15 Jahren ohne jegliche Probleme.

An sich mag ich den Open Source- und Transparenz-Gedanken, unterstütze das auch aktiv, aber wenn die physische Qualität dermaßen unterirdisch ist wie beim Nitrokey 3A Mini (die anderen kann ich nicht beurteilen), dann hilft mir das auch nicht. So ein Security Key ist einigermaßen zentral, der darf nicht einfach so zerfallen bei normaler Nutzung.

#Yubikey #Nitrokey #SecurityKey #Security #FIDO2

Ok, I got the #Yubikey unlock for #LUKS working.
Problem is, it still needs my password initially for #Grub, which means it's kinda pointless, as grub needs the entire root disk unencrypted to get to /boot 😞

@DerEntspannende
#YubiKey is #unfree and restricts your #freedom . @nitrokey promotes and is #openSource / #openhardware and has #blackfriday & Saturday (November 28-29) a 10% discount on all products: https://www.nitrokey.com/news/2025/our-black-friday-special-%E2%80%93-10-discount-everything
#fido #openpgp #coreboot #grapheneos #nextcloud

if anyone was planning to get some more yubikeys now might be a good time they are currently running a Black Friday discount on the 5 series which is even better than their student discount

#tech #yubikey #security #pgp #fido

#BlackFriday Sale at Yubico: 30% off the #YubiKey 5 NFC and 5C NFC (Limit 4 Total)
https://www.yubico.com/de/store/2025/black-friday-sale/

I bought a #YubiKey and the package was taped shut. It looks like it was done because the packaging doesn't appear to be designed well, which caused the perforations on the back of the package to burst open.

Should I have any reservations about setting it up and using it?

RE: https://infosec.exchange/@BleepingComputer/115611930841493640

Considered a #Yubikey hardware security key but not taken the plunge. 30% off in their Black Friday sale: https://www.yubico.com/gb/store/2025/black-friday-sale/

Also #Protonmail (which I use for cloud-based email - based in Switzerland - that isn't sucking your data, along with their #ProtonPass password manager) have some good intro offers: https://proton.me/mail/black-friday

For some other security related #BlackFriday discounts check out https://fosstodon.org/@BleepingComputer@infosec.exchange/115611930882143073

[EDIT: Yay - quote toots are now working on @fosstodon!]

Just a quick reminder that @yubico is offering 30% off the #Yubikey 5 NFC and 5C NFC (for Czechs: in #Alza it's even 36% off) until Dec 1, so now is the perfect time to make your life more secure.

https://www.yubico.com/store/2025/black-friday-sale/

#BlackFriday

The Yubico Black Friday sale is on. 30% discount on the 5 NFC and 5C NFC. #Yubico #YubiKey #Passkeys
https://www.yubico.com/store/2025/black-friday-sale/

Why doesn't my #yubikey work as #ssh key under #ArchLinux ?

- pcscd must be running
- ccid needs to be installed
- (maybe???) user needs to be part of pcscd

Joost van Dijk from @yubico tells us about #OpenSSH combined with the #FIDO standard at the @nluug #najaarsconferentie. This info applies on any FIDO #securitykey, not just #yubikey.

#opensourceconference #Linuxconference #conference #conferentie #NLUUG #nluug25nj #hardwarekey

@kkarhan @Wrewdison @nitrokey

Is it worth mentioning #Token2 as a FOSS #yubikey alternative too?

https://www.token2.net/site/page/compass-security-schweiz-ag-completes-independent-public-security-review-of-token2-pin-fido2-security-keys

#FOSS #hardwareKey #2FA #openSource #FIDO

@Wrewdison granted, given the limited resources you may want to consider lookibg at a @nitrokey Storage - which is basically a better #Yubikey as it's fully #OpenSource'd …

This makes Yubikey a good backup proof way to use as passkeys, which is what I want.

Also using GPG as passkey doesn't have same non-resident/resident key limitation. Normally Yubikey can store only ~25 resident passkeys, which is annoying.

With GPG passkey you can store the resident data to a files, and use GPG in Yubikey for challenges only.

#Yubikey #GPG

Some one in HN pointed out they use GPG for #Passkey authentication. I didn't get details how, but it probably is doable.

This would make GPG #Yubikey/Smartcard really great "One key to rule them all" solution.

1. You can login to SSH servers with GPG-agent and [A] key
2. You can encrypt with GPG
3. You can authenticate to web services via Passkeys with same [A]

I wonder how well ED25519 in A slot works for passkeys, when I have time I will try.

#GPG

🌘 從 GPG 轉向 age：現代化加密的個人實踐
➤ 告別 GPG，擁抱 age：一場關於現代加密與個人工作流程的革新
✤ https://luke.hsiao.dev/blog/gpg-to-age/
作者分享了他從 GPG 轉換到 age 的經驗，這是一個更現代、更簡潔的加密工具。轉變的動機來自於 GPG 憑證即將到期，以及作者主要將 GPG 用於加密而非簽署的現況。他詳細說明瞭如何在密碼管理器、SSH 代理以及與 chezmoi 等工具的整合中進行遷移，並讚揚了 age 在 YubiKey 設定上的簡易性。雖然此次轉變並非必要，但作者認為探索新工具能帶來新的思考方式和樂趣。
+ 作者的遷移過程寫得很清楚，特別是使用 passage 替代 pass 的腳本看起來很方便。但我還是有點猶豫是否要放棄 GPG 的簽署功能。
+ age 真的這麼容易設定 YubiKey 嗎？我上次用 GPG 花了好幾個小時，如果 age 真的能縮短到 30 分鐘，那我真的該考慮換了。
#技術 #加密 #GPG #age #YubiKey #workflow

Yubikey users cannot access to X, because of a bad deploy:

I personally locked out of X because of this. Also the "recovery codes" section is also broken.

https://www.windowscentral.com/software-apps/live/x-goes-down-hard-with-a-security-yubikey-error-affecting-millions-of-twitter-users

#yubikey #twitter #2fa #security #x

𝗪𝗲𝗿𝗲𝗹𝗱𝘄𝗶𝗷𝗱 𝗶𝗻𝗹𝗼𝗴𝗽𝗿𝗼𝗯𝗹𝗲𝗺𝗲𝗻 𝗯𝗶𝗷 𝗫, 𝗴𝗲𝗯𝗿𝘂𝗶𝗸𝗲𝗿𝘀 𝗴𝗲𝘃𝗿𝗮𝗮𝗴𝗱 '𝗬𝘂𝗯𝗶𝗸𝗲𝘆' 𝘁𝗲 𝗿𝗲𝗴𝗶𝘀𝘁𝗿𝗲𝗿𝗲𝗻

Gebruikers van socialemediaplatform X hebben wereldwijd last van een storing. Mensen die in willen loggen, krijgen de melding: 'Je moet je Yubikey opnieuw registreren'.

https://www.rtl.nl/nieuws/buitenland/artikel/5538575/wereldwijde-storing-bij-x-gebruikers-gevraagd-yubikey-te

#inlogproblemen #gebruikers #Yubikey

Ironically enough, I'm not able to activate Log in with passkey on my Bitwarden account, only getting 500 Internal Server Error in response… :neocat_googly_shocked:

#Bitwarden #Yubikey

Anyone with the basic (non-NFC/biometric) Yubikey, is the little gold nub for authentication/verifying it's you?