Subj : Re: Yubikey
To   : Sean Dennis
From : Arelor
Date : Wed Jun 09 2021 17:31:32

  Re: Re: Yubikey
  By: Sean Dennis to Kurt Weiske on Wed Jun 09 2021 12:14 pm

 > Kurt Weiske wrote to Sean Dennis:
 > 
 > KW> While hardware 2FA is pretty nifty, I'd think that SSH keys would be
 > KW> sufficient.
 > 
 > It's not just SSH keys that I'm thinking about; it's the ability to keep
 > all of my passwords with me at all times and not just for my own equipment.
 > 
 > I also want to use 2FA with various websites that a SSH key will not work
 > with (I'd rather carry around a Yubikey than depend on this POS cell phone
 > I have and Google Authentiate).
 > 
 > In my case, if it wasn't for everything else I want, SSH keys would be
 > sufficient.
 > 
 > Later,
 > Sean

I personally keep my passwords stored in a password manager hosted in a
personal server. That way I can access my passwords from any computer on which
I have the SSH keys required to access the server.

I take care of having the SSH keys only on computers I trust completely and
this means the passwords are only used from computers I trust completely.

This also means I cannot fall in temptation and access my email from my crappy,
untrusted smartphone on a whim, and I am forced to sit down at a proper
workstation with Full Disk Encryption, integrity databases et all, in order to
access sensitive information.

For the morbid curios, most of what qualifies as "sensitive information" are
actually short stories and horse wallpapers XD


--
gopher://gopher.richardfalken.com/1/richardfalken
--- SBBSecho 3.14-Linux
 * Origin: Palantir * palantirbbs.ddns.net * Pensacola, FL * (618:250/24)

.