home.social

#certificates — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #certificates, aggregated by home.social.

  1. Ubuntu 26.04 system CA store appears inconsistent with application trust (Fortinet SSL inspection certificate) #certificates

    askubuntu.com/q/1567000/612

  2. Ubuntu 26.04 system CA store appears inconsistent with application trust (Fortinet SSL inspection certificate) #certificates

    askubuntu.com/q/1567000/612

  3. Ubuntu 26.04 system CA store appears inconsistent with application trust (Fortinet SSL inspection certificate) #certificates

    askubuntu.com/q/1567000/612

  4. Ubuntu 26.04 system CA store appears inconsistent with application trust (Fortinet SSL inspection certificate) #certificates

    askubuntu.com/q/1567000/612

  5. OK, normally I have my shit wired together, but this bastard is getting to me.

    The requirement is for 'phishing-resistant' second factor. That rules out all of the six-digit code apps - it is too easy apparently to get someone to read out their codes to an attacker.

    Again, IDK, but apparently 'phishing-resistant' is the next Big Thing. My personal feeling? We are chasing our shadows. Unless I am the last alive Iranian nuclear bloke, my login is as secure as I can be bothered to make it, and I am bound to be disappointed by a weakness at some point in the near or far future. Phishing isn't on the agenda.

    Life.

    I carry a seemingly-fine cryptographic store about with me most days and ludicrously call it my 'phone'. It can sign stuff, wrangle certificates, store passwords, read faces and fingerprints and QRcodes and NFC tags. Heaps of useful 'security' stuff. I wouldn't call the software environment _secure_ at all, but ... IDK, people seem happy enough with it. Anything for an easy life. Row with the flow.

    So I search for:
    "google passkey login with ssh"
    My god, whatalottasloppa comes back. A gattling gun of half-arsery, cant and junk advice.
    Then "MS hello for business login ssh". Christ almighty. Much worse. Worse again.
    Then "Apple ID login to ssh". At least that seems to be a simple: "no". A relief really.

    Someone in the know please: can I set up my sshd to use my phone-based passkey as a; primary, secondary or even the complete, login?

    #TOTP #HOTP #passkey #sshd #key #certificates #PSK #login #ssh #linux #pam #openssh

  6. OK, normally I have my shit wired together, but this bastard is getting to me.

    The requirement is for 'phishing-resistant' second factor. That rules out all of the six-digit code apps - it is too easy apparently to get someone to read out their codes to an attacker.

    Again, IDK, but apparently 'phishing-resistant' is the next Big Thing. My personal feeling? We are chasing our shadows. Unless I am the last alive Iranian nuclear bloke, my login is as secure as I can be bothered to make it, and I am bound to be disappointed by a weakness at some point in the near or far future. Phishing isn't on the agenda.

    Life.

    I carry a seemingly-fine cryptographic store about with me most days and ludicrously call it my 'phone'. It can sign stuff, wrangle certificates, store passwords, read faces and fingerprints and QRcodes and NFC tags. Heaps of useful 'security' stuff. I wouldn't call the software environment _secure_ at all, but ... IDK, people seem happy enough with it. Anything for an easy life. Row with the flow.

    So I search for:
    "google passkey login with ssh"
    My god, whatalottasloppa comes back. A gattling gun of half-arsery, cant and junk advice.
    Then "MS hello for business login ssh". Christ almighty. Much worse. Worse again.
    Then "Apple ID login to ssh". At least that seems to be a simple: "no". A relief really.

    Someone in the know please: can I set up my sshd to use my phone-based passkey as a; primary, secondary or even the complete, login?

    #TOTP #HOTP #passkey #sshd #key #certificates #PSK #login #ssh #linux #pam #openssh

  7. OK, normally I have my shit wired together, but this bastard is getting to me.

    The requirement is for 'phishing-resistant' second factor. That rules out all of the six-digit code apps - it is too easy apparently to get someone to read out their codes to an attacker.

    Again, IDK, but apparently 'phishing-resistant' is the next Big Thing. My personal feeling? We are chasing our shadows. Unless I am the last alive Iranian nuclear bloke, my login is as secure as I can be bothered to make it, and I am bound to be disappointed by a weakness at some point in the near or far future. Phishing isn't on the agenda.

    Life.

    I carry a seemingly-fine cryptographic store about with me most days and ludicrously call it my 'phone'. It can sign stuff, wrangle certificates, store passwords, read faces and fingerprints and QRcodes and NFC tags. Heaps of useful 'security' stuff. I wouldn't call the software environment _secure_ at all, but ... IDK, people seem happy enough with it. Anything for an easy life. Row with the flow.

    So I search for:
    "google passkey login with ssh"
    My god, whatalottasloppa comes back. A gattling gun of half-arsery, cant and junk advice.
    Then "MS hello for business login ssh". Christ almighty. Much worse. Worse again.
    Then "Apple ID login to ssh". At least that seems to be a simple: "no". A relief really.

    Someone in the know please: can I set up my sshd to use my phone-based passkey as a; primary, secondary or even the complete, login?

    #TOTP #HOTP #passkey #sshd #key #certificates #PSK #login #ssh #linux #pam #openssh

  8. OK, normally I have my shit wired together, but this bastard is getting to me.

    The requirement is for 'phishing-resistant' second factor. That rules out all of the six-digit code apps - it is too easy apparently to get someone to read out their codes to an attacker.

    Again, IDK, but apparently 'phishing-resistant' is the next Big Thing. My personal feeling? We are chasing our shadows. Unless I am the last alive Iranian nuclear bloke, my login is as secure as I can be bothered to make it, and I am bound to be disappointed by a weakness at some point in the near or far future. Phishing isn't on the agenda.

    Life.

    I carry a seemingly-fine cryptographic store about with me most days and ludicrously call it my 'phone'. It can sign stuff, wrangle certificates, store passwords, read faces and fingerprints and QRcodes and NFC tags. Heaps of useful 'security' stuff. I wouldn't call the software environment _secure_ at all, but ... IDK, people seem happy enough with it. Anything for an easy life. Row with the flow.

    So I search for:
    "google passkey login with ssh"
    My god, whatalottasloppa comes back. A gattling gun of half-arsery, cant and junk advice.
    Then "MS hello for business login ssh". Christ almighty. Much worse. Worse again.
    Then "Apple ID login to ssh". At least that seems to be a simple: "no". A relief really.

    Someone in the know please: can I set up my sshd to use my phone-based passkey as a; primary, secondary or even the complete, login?

    #TOTP #HOTP #passkey #sshd #key #certificates #PSK #login #ssh #linux #pam #openssh

  9. OK, normally I have my shit wired together, but this bastard is getting to me.

    The requirement is for 'phishing-resistant' second factor. That rules out all of the six-digit code apps - it is too easy apparently to get someone to read out their codes to an attacker.

    Again, IDK, but apparently 'phishing-resistant' is the next Big Thing. My personal feeling? We are chasing our shadows. Unless I am the last alive Iranian nuclear bloke, my login is as secure as I can be bothered to make it, and I am bound to be disappointed by a weakness at some point in the near or far future. Phishing isn't on the agenda.

    Life.

    I carry a seemingly-fine cryptographic store about with me most days and ludicrously call it my 'phone'. It can sign stuff, wrangle certificates, store passwords, read faces and fingerprints and QRcodes and NFC tags. Heaps of useful 'security' stuff. I wouldn't call the software environment _secure_ at all, but ... IDK, people seem happy enough with it. Anything for an easy life. Row with the flow.

    So I search for:
    "google passkey login with ssh"
    My god, whatalottasloppa comes back. A gattling gun of half-arsery, cant and junk advice.
    Then "MS hello for business login ssh". Christ almighty. Much worse. Worse again.
    Then "Apple ID login to ssh". At least that seems to be a simple: "no". A relief really.

    Someone in the know please: can I set up my sshd to use my phone-based passkey as a; primary, secondary or even the complete, login?

    #TOTP #HOTP #passkey #sshd #key #certificates #PSK #login #ssh #linux #pam #openssh

  10. European Commission to be more generous with emissions certificates

    FILE PHOTO – Smoke rises from the chimneys of wood-processing industrial plants at the seaport of Wismar. (zu…
    #Europe #EU #certificates #EuropeanCommission #EuropeanUnion #greenhousegasemission #industrialplants
    europesays.com/europe/38629/

  11. Let's Encrypt, pls, don't let us down, I can't go back to painful reissuance of certificates through digital equivalent of 18th century english bank.

    Also, I don't want to get a heart attack due to me working in infosec and suddenly remembering worst case scenarios, including what Vernor Vinge described in Rainbow's End.

    #infosec #certificates

  12. Let's Encrypt, pls, don't let us down, I can't go back to painful reissuance of certificates through digital equivalent of 18th century english bank.

    Also, I don't want to get a heart attack due to me working in infosec and suddenly remembering worst case scenarios, including what Vernor Vinge described in Rainbow's End.

    #infosec #certificates

  13. Let's Encrypt, pls, don't let us down, I can't go back to painful reissuance of certificates through digital equivalent of 18th century english bank.

    Also, I don't want to get a heart attack due to me working in infosec and suddenly remembering worst case scenarios, including what Vernor Vinge described in Rainbow's End.

    #infosec #certificates

  14. Let's Encrypt, pls, don't let us down, I can't go back to painful reissuance of certificates through digital equivalent of 18th century english bank.

    Also, I don't want to get a heart attack due to me working in infosec and suddenly remembering worst case scenarios, including what Vernor Vinge described in Rainbow's End.

    #infosec #certificates

  15. If your looking for lower cost code signing certificate for an open source project then Certium has options:

    certum.eu/en/

    €69 for the first year, which apparently includes a USB device to house the certificate hardware, renewals is a lot less.

    Seems like a good option, although I've not tried this personally 🙂🤷‍♂️

    #AppDevelopment #OpenSource #Certificates #DigitalCertificates #CodeSigning

  16. If your looking for lower cost code signing certificate for an open source project then Certium has options:

    certum.eu/en/

    €69 for the first year, which apparently includes a USB device to house the certificate hardware, renewals is a lot less.

    Seems like a good option, although I've not tried this personally 🙂🤷‍♂️

    #AppDevelopment #OpenSource #Certificates #DigitalCertificates #CodeSigning

  17. If your looking for lower cost code signing certificate for an open source project then Certium has options:

    certum.eu/en/

    €69 for the first year, which apparently includes a USB device to house the certificate hardware, renewals is a lot less.

    Seems like a good option, although I've not tried this personally 🙂🤷‍♂️

    #AppDevelopment #OpenSource #Certificates #DigitalCertificates #CodeSigning

  18. If your looking for lower cost code signing certificate for an open source project then Certium has options:

    certum.eu/en/

    €69 for the first year, which apparently includes a USB device to house the certificate hardware, renewals is a lot less.

    Seems like a good option, although I've not tried this personally 🙂🤷‍♂️

    #AppDevelopment #OpenSource #Certificates #DigitalCertificates #CodeSigning

  19. I'm now removing #HestiaCP from the #server 🤬

    #letsencrypt #certificates for the mail domain keep failing to renew automatically. Getting a new certificate for the affected domains is always a nightmare.

    I only notice the error when my email programs report an expired certificate. I've been desperately trying to renew two expired certificates for the past hour, but the requests keep getting rejected.

    Firstly, this is beyond my capabilities, and secondly, I had better things to do today. I'll try #ISPconfig again.

  20. I'm now removing #HestiaCP from the #server 🤬

    #letsencrypt #certificates for the mail domain keep failing to renew automatically. Getting a new certificate for the affected domains is always a nightmare.

    I only notice the error when my email programs report an expired certificate. I've been desperately trying to renew two expired certificates for the past hour, but the requests keep getting rejected.

    Firstly, this is beyond my capabilities, and secondly, I had better things to do today. I'll try #ISPconfig again.

  21. I'm now removing from the 🤬

    for the mail domain keep failing to renew automatically. Getting a new certificate for the affected domains is always a nightmare.

    I only notice the error when my email programs report an expired certificate. I've been desperately trying to renew two expired certificates for the past hour, but the requests keep getting rejected.

    Firstly, this is beyond my capabilities, and secondly, I had better things to do today. I'll try again.

  22. I'm now removing #HestiaCP from the #server 🤬

    #letsencrypt #certificates for the mail domain keep failing to renew automatically. Getting a new certificate for the affected domains is always a nightmare.

    I only notice the error when my email programs report an expired certificate. I've been desperately trying to renew two expired certificates for the past hour, but the requests keep getting rejected.

    Firstly, this is beyond my capabilities, and secondly, I had better things to do today. I'll try #ISPconfig again.

  23. PKI in a Nutshell
    A blog by Ronald

    This blog briefly describes theoretically how Public Key Infrastructure (PKI) works. It also introduces the key concepts used in PKI. This is done by describing encryption, decryption, hashing, signing, and authentication using mathematical notations.

    #dev #softwaredevelopment #Security #PKI #PublicKeyInfrastructure #Certificates #PublicKey #PrivateKey #Keystore #Truststore

    jdriven.com/blog/2026/04/PKI-i

  24. PKI in a Nutshell
    A blog by Ronald

    This blog briefly describes theoretically how Public Key Infrastructure (PKI) works. It also introduces the key concepts used in PKI. This is done by describing encryption, decryption, hashing, signing, and authentication using mathematical notations.

    #dev #softwaredevelopment #Security #PKI #PublicKeyInfrastructure #Certificates #PublicKey #PrivateKey #Keystore #Truststore

    jdriven.com/blog/2026/04/PKI-i

  25. PKI in a Nutshell
    A blog by Ronald

    This blog briefly describes theoretically how Public Key Infrastructure (PKI) works. It also introduces the key concepts used in PKI. This is done by describing encryption, decryption, hashing, signing, and authentication using mathematical notations.

    #dev #softwaredevelopment #Security #PKI #PublicKeyInfrastructure #Certificates #PublicKey #PrivateKey #Keystore #Truststore

    jdriven.com/blog/2026/04/PKI-i

  26. PKI in a Nutshell
    A blog by Ronald

    This blog briefly describes theoretically how Public Key Infrastructure (PKI) works. It also introduces the key concepts used in PKI. This is done by describing encryption, decryption, hashing, signing, and authentication using mathematical notations.

    #dev #softwaredevelopment #Security #PKI #PublicKeyInfrastructure #Certificates #PublicKey #PrivateKey #Keystore #Truststore

    jdriven.com/blog/2026/04/PKI-i

  27. PKI in a Nutshell
    A blog by Ronald

    This blog briefly describes theoretically how Public Key Infrastructure (PKI) works. It also introduces the key concepts used in PKI. This is done by describing encryption, decryption, hashing, signing, and authentication using mathematical notations.

    #dev #softwaredevelopment #Security #PKI #PublicKeyInfrastructure #Certificates #PublicKey #PrivateKey #Keystore #Truststore

    jdriven.com/blog/2026/04/PKI-i

  28. Oh joy, another groundbreaking revelation: #SSH #certificates are like the ultimate VIP pass for servers, sparing us the nail-biting suspense of wondering if we're chatting with the right machine 🤯. Because surely, the average user isn't just mindlessly hitting 'yes' and hoping for the best 🤦‍♂️. Who knew server security could be this exhilarating? 🎉
    jpmens.net/2026/04/03/ssh-cert #ServerSecurity #VIPPass #Cybersecurity #TechHumor #HackerNews #ngated

  29. Oh joy, another groundbreaking revelation: #SSH #certificates are like the ultimate VIP pass for servers, sparing us the nail-biting suspense of wondering if we're chatting with the right machine 🤯. Because surely, the average user isn't just mindlessly hitting 'yes' and hoping for the best 🤦‍♂️. Who knew server security could be this exhilarating? 🎉
    jpmens.net/2026/04/03/ssh-cert #ServerSecurity #VIPPass #Cybersecurity #TechHumor #HackerNews #ngated

  30. Oh joy, another groundbreaking revelation: #SSH #certificates are like the ultimate VIP pass for servers, sparing us the nail-biting suspense of wondering if we're chatting with the right machine 🤯. Because surely, the average user isn't just mindlessly hitting 'yes' and hoping for the best 🤦‍♂️. Who knew server security could be this exhilarating? 🎉
    jpmens.net/2026/04/03/ssh-cert #ServerSecurity #VIPPass #Cybersecurity #TechHumor #HackerNews #ngated

  31. Oh joy, another groundbreaking revelation: #SSH #certificates are like the ultimate VIP pass for servers, sparing us the nail-biting suspense of wondering if we're chatting with the right machine 🤯. Because surely, the average user isn't just mindlessly hitting 'yes' and hoping for the best 🤦‍♂️. Who knew server security could be this exhilarating? 🎉
    jpmens.net/2026/04/03/ssh-cert #ServerSecurity #VIPPass #Cybersecurity #TechHumor #HackerNews #ngated