WYGIWYG
I’ve been using certificate based auth on https for ages on my ops stuff. Most devices support just slapping an SSL/TLS key into their os, but not everything.
But when I wanted to use it for Jellyfin, I found TVs and sticks aren’t all straightforward.
In your link, they closed that ticket as not planned because they intend to implement FIDO’s secure exchange protocols. https://github.com/keepassxreboot/keepassxc/issues/11363
It should (hopefully) be secure when they get done.
You forgot, you descended into the lemmy-verse powering your car where the concept of Rick and Morty humor is not appreciated and often not tolerated.
;)
WUBBU-LUBBA-DUB-DUB!!!
Everybody does it differently. GitHub in particular allows multiple
If you are doing development or admin work, I would greatly advise you to pick up a Yubi Key.
My basic setup for any app/site that will allow it is two yubis and one passkey.
One yubi in the safe with next of kin instructions, one on my key ring.
Then any site that supports passkey, I’ll also have one of those there too.
Almost every company has some way to work around the 2FA loss.
It’s easy enough to enforce 2FA on it.
Most of the other online solutions are about the same.
You can read the cables, you can read the transceivers in the video card, in a lot of the screens you can even read the panel changing itself.
Our ability is to remote sense EMF is absolutely ridiculous these days.
Then there’s crap like the espionage where they change fan speeds. Or flash an infrared proximity sensor on a cell phone to exfiltrate data.
Those are awfully dangerous on their own these days.
As soon as a poorly salted hash leaks or gasp, a hash with no salt, it’s super easy to reverse those passwords now.
2FA severely reduces the danger of rainbow tables and keyloggers. The only real worry with 2FA is login replacement and interception. and passkey solves that, allbeit at the cost of complexity.
Half a cryptographic key that you can’t easily give to someone over the phone by accident.
There are a few on audio, I saw one where they read HDMI over the air from 60 ft away.
I’d kinda like to see Bluetooth shored up a bit maybe require a tap to bind every day.
You can tell just from the response on this post people aren’t all ready for passkey yet, but you can’t wait fo them to decide they’re ready before you start.
Under passkey implementations, you need to unlock the passkey device with biometrics or passwords. Something you are/know (biometrics/passwords) and something you have (passkey).
It’s not impossible to screw it up. Put your passkeys in bitwarden, reuse a password and don’t 2fa that.
You can have more than one passkey.
You can still use password + 2fa
You can use google oauth.
You can use a YUBI key
You should probably have a primary and secondary auth for every site.
I get keyboards probably have more range, but i worry privacy was gone a long time ago.
but they require chmod 400 and they’re ideally in on an encrypted disk
So the desk drawer is locked and the codes are Luks encrypted.
And for critical stuff, you should also have a password on the key.
If your ssh keys are like a passwords on paper in a drawer, you’re doing it wrong.
A wprthy cause, but there’s no end of other things to host in LXC. It’s possible, but unpleasant and can be brittle for updates.
You know, it would be a really neat browser plug-in. Mouse over a URL and get the encoded bit decoded?
Straight up reverse proxy isn’t bad. I think it’s only a couple lines in a file.
But when you want to add let’s encrypt and dynamic DNS. It starts to get a little bit meatier.
Providing documentation to something that you don’t know is one of its few really solid uses. If it misses a detail or doesn’t get it right on the first try, it’s still probably faster than you starting from scratch, RTFM.
I can’t decide if you don’t know what you’re talking about or you’re just trying to troll me.
agreed, “still worth it”
I do, however, tend to keep spaces out of my folder names so i can just use quotes at the end.
/Images/Halloween/Projections/“Creepy Crawlies.mp4”