It would be nice if my #yubikey stopped murdering my MacBook battery while it’s sleeping

Heh, looks like it's only on #iOS that I can create a #passkey for #Discord on hardware key (#Yubikey). Desktop and web insists on treating it as an MFA-only device, which is pretty annoying. Authentication with one seems to work fine though.

Salut Masto, je cherche à acheter une clé de sécurité FIDO2 pour sécuriser l'accès à mes services gouvernementaux ici en Tchéquie.

Le fournisseur d'identité recommende YubiKey 5 (ou NFC) ou bien la IdemKey (GoTrust).

Est-ce que vous avez les mêmes recommendations?

#FIDO2 #YubiKey

@juengling
Ja hab eins in einer alten usbA Version von #Victorinox am Schlüsselbund. Mit USB-Stick, Messer, Schere, Kugelschreiber. Brauche die Werkzeuge sehr häufig. Leider gibts keinen #nitrokey oder #Yubikey dafür.
Als ich es vor 10Jahren gekauft habe wars noch als IT-Tool vermarktet worden.

Are there good yubikey alternatives that are in a credit card form factor? Ideally something very cross platform friendly.

Something that holds cryptographic keys and can answer TOTP challenges, ideally.

#yubikey #cybersecurity #linux #android #windows

Nextcloud sicher nutzen: Überblick über Weboberfläche, Clients und essentielle Sicherheitsfunktionen wie 2FA, starke Passwörter und Freigaben.

Teil 3 der Artikelserie »Nextcloud«. 👇

https://www.kuketz-blog.de/nextcloud-nutzen-grundfunktionen-apps-und-schutzmechanismen-nextcloud-teil-3/

#nextcloud #2fa #passwort #sicherheit #security #yubikey #nitrokey

Nextcloud sicher nutzen: Überblick über Weboberfläche, Clients und essentielle Sicherheitsfunktionen wie 2FA, starke Passwörter und Freigaben.

Teil 3 der Artikelserie »Nextcloud«. 👇

https://www.kuketz-blog.de/nextcloud-nutzen-grundfunktionen-apps-und-schutzmechanismen-nextcloud-teil-3/

#nextcloud #2fa #passwort #sicherheit #security #yubikey #nitrokey

I'm betting the answer here is "this isn't possible" but if anyone knows how to tell OpenSSH that when it's enumerating pubkeys it should check which of the two known authentication dongles is actually plugged into the computer, and only prompt me to unlock the SK key that belongs to that dongle, not both of them, please tell me how.

#openssh #yubikey

Explain #passkeys to me like I'm your grandparents.

#2fa #authentication #security #fido #webauthn #fido2 #otp #yubikey #password #auth

Does anyone have experience with either #Yubikey, #Nitrokey or any other hardware security token for both #MFA/#2FA as well as #encryption via #PGP/#GPG or #SMIME?

In particular, I am looking at the Nitrokey 3A NFC. As far as I can tell, Yubico only sells #MFA tokens(?), unless the YubiKey 5 FIPS Series can hold encryption keys as well?

Both price and open hardware aspect definitely speak for Nitrokey, but I do not know anyone who owns such a token... Anyone who I can talk to?

j2k25 - OpenBSD Hackathon Japan 2025 (rsadowski@) https://www.undeadly.org/cgi?action=article;sid=20250601104254 #openbsd #hackathon #j2k25 #development #kde #kdeapps #yubikey #freesoftware #libresoftware

TIL that Pure Storage issues YubiKeys branded with their logo!

(eBay, not my listing:)

https://www.ebay.com/itm/135898756327

Interesting: Just over the side of the logo, the phrase "NO NFC" is seen (not sure if an add-on label, or part of the logo). NFC-enabled keys ship with NFC disabled by default until first power-up (and can be re-disabled in ykman -R / --restrict option):

https://www.yubico.com/getting-started/

... so I'm not sure if this means NFC is permanently disabled, but it seems likely. Will update when I get one.

#YubiKey

Fuck #Authy. Fuck it in it's stupid ass. They got rid of the desktop version. Fine. It sucks, but I could deal with it. Then they dropped support for #GrapheneOS. Meaning I'm locked out of everything. Luckily I have a #YubiKey so I can get into most things. I guess it's time to move to something else.

I realized I didn't wear #yubikey on chain on my neck for 8 days (because of circumstances). And this is absolutely record for me, it was never so long until now!
Does it mean I have a problem? :neofox_laugh_tears_256:

I have it on me now. I couldn't feel so... naked? without armor? anymore.

#nerd #MagicalThinking

#DuckDuckFedi I have a #PGP key on a #YubiKey. I'm now at a new laptop, how do I teach my #gpg installation to make use or the YubiKey for my identity ? All documentation I find is about moving an existing key to a YubiKey rather than making use of an existing key on a YubiKey ...

Mein Nitrokey 3A Mini ist jetzt innerhalb von eineinhalb Jahren zum zweiten Mal defekt und ich bin froh, seit dessen ersten Ausfall immer einen Yubikey als Backup bei mir zu haben...

#Nitrokey #Yubikey

@corsac Afaik the #GPG agent can only use the keys stored in the GPG applet on the #Yubikey. What you'll likely want is to have both the GPG and OpenSSH agents running simultaneously, and choose which one you want with the "IdentityAgent" #SSH client option. You can, say, specify it per-host in your user's SSH config file, or maybe make some shell aliases :>

Does anyone know if it's possible to use gpg-agent as ssh-agent while using ed25519-sk resident keys on a Yubikey? #ssh #yubikey #gpg

I'm mainly using my GPG authentication key (stored on a Yubikey) as an SSH key, but I'd like to also have the option to use the FIDO-backed keys.

If I store the key handle on the filesystem (using ssh-keygen -K) it works but I'd like to keep it in memory (using ssh-add -K) and that doesn't work with gpg-agent enable-ssh-support

I have to say that I find it almost funny how broken the #yubikey fido2 /webauth is now after passkeys have started to be a thing. Was just trying to use it on the https://demo.yubico.com/ and the loops and amount of errors I see with popups appearing in front of me and talking about passkeys when it's nothing of the sort... And just keeps failing to authenticate... I mean I'm sure I've tried it before on this android phone using the chrome browser and it worked 🥲.