#nitrokey — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #nitrokey, aggregated by home.social.
-
@ewen @dch i appreciate your reports on yubikeys, so maybe they are more reliable?
it's just disappointing that i made this experience with an #OpenSource product which i had hoped to be the better choice. at the time, i chose #nitrokey deliberately… -
Stories and reasoning we put to our work is often not that visible. Here is my Link project, which is partly AI implemented communication system to test various transport and security measures. It's built with buildroot and all other details can be found here: https://codeberg.org/resiliencetheatre/rpi-extree/src/branch/main/link.md
#opsec #comsec #outofband #opensource #buildroot #embedded #lvgl #prepping #preparedness #nitrokey #fido2 #satcom -
Stories and reasoning we put to our work is often not that visible. Here is my Link project, which is partly AI implemented communication system to test various transport and security measures. It's built with buildroot and all other details can be found here: https://codeberg.org/resiliencetheatre/rpi-extree/src/branch/main/link.md
#opsec #comsec #outofband #opensource #buildroot #embedded #lvgl #prepping #preparedness #nitrokey #fido2 #satcom -
Stories and reasoning we put to our work is often not that visible. Here is my Link project, which is partly AI implemented communication system to test various transport and security measures. It's built with buildroot and all other details can be found here: https://codeberg.org/resiliencetheatre/rpi-extree/src/branch/main/link.md
#opsec #comsec #outofband #opensource #buildroot #embedded #lvgl #prepping #preparedness #nitrokey #fido2 #satcom -
#Newsboat und #Wallabag - Mehrere Smart Cards und unterschiedliche Betriebssystem verwenden
Newsboat kann über die API Artikel direkt an Wallabag senden. Dort können die Beiträge bequem und übersichtlich verwaltet, mit Tags versehen und im Webbrowser oder der Wallabag-Apps auf allen Endgeräten gelesen werden.
In diesem Beitrag werden mehrere Clients und #Smartcards (#YubiKey und #Nitrokey) verwendet, um interessante Artikel an die zentrale Wallabag-Instanz senden.
-
This week in #FDroid (TWIF) was published the other day:
* Basic 2.0-alpha6 ready to translate #Weblate
* #ArcaneChat #DeltaChat at war with metadata
* #BasicSync for #Syncthing
* #Ente brings #EnteLocker
* #XBMC #Kodi update
* new #Lichess client
* #Threema does not want your metadata either
* #FMD teaches us #HSM app signing #Nitrokey #PKCS
+ 35 new apps
& 237 updatesWhat is metadata anyway? https://f-droid.org/2026/04/03/twif.html
-
My current #linux system in 06/2024:
Hardware: ThinkPad T480 with Intel i7 from 2018, dual internal batteries, 512 GB SSD, 32GB RAM and a #Nitrokey 3 as a hardware security token.
OS: #Fedora 40 :fedora: #KDE Edition :kde:
Terminal: #Konsole
Terminal-prompt: Starship
Editor: Neovim :neovim:
dotfile Management: #chezmoi
Shell: #fish shell 🐠
Synchronized shell history: #atuin
Container-Engine: #Podman :podman:
Dev-Containers: #Distrobox (With #RHEL and #Arch Linux (btw))
Modern "ls" replacement: #eza
GPG/SSH-Keys: openpgp-card-ssh-agent and oct (https://codeberg.org/openpgp-card/)
Mail/PIM: #KMail/#KOrganizer
Notes: #KleverNotes
Mastodon Client: #Tokodon
File-Synchronization: #Nextcloud
Gaming: Steam :steam: , Bottles and ProtonUP-QT -
With the release of `nethsm-cli` 0.6.0 it is now possible to issue signatures for signing requests! 🎉 📦 🦀
https://crates.io/crates/nethsm-cli/0.6.0
Signing requests for files can be created using `signstar-request-signature` (see https://chaos.social/@dvzrv/113646761365294969).
#DigitalSignature #RustLang #ArchLinux #Signstar #NetHSM #Nitrokey #OpenPGP #Cryptography
-
With the release 0.4.0 of the nethsm-cli crate we have made the #CLI parsing more robust! ⛰️
https://crates.io/crates/nethsm-cli/0.4.0
The nethsm executable continues to shape up as a versatile tool for interfacing with #Nitrokey #NetHSM (virtual or hardware) for generic operations.
#OpenPGP #ArchLinux #Rust #RustLang #Cryptography #DigitalSignature #Encryption
-
The #nethsm crate has just been released in version 0.7.0. 🎉
https://crates.io/crates/nethsm/0.7.0
In this version we added several improvements for the use with #OpenPGP (such as updating to the latest #rPGP) and added integration for validated key setups.
#Rust #RustLang #ArchLinux #Signstar #Cryptography #DigitalSignature #Nitrokey
-
We have just released the first version of the nethsm-tests crate 🥳
https://crates.io/crates/nethsm-tests/0.1.0
This library helps to test against #NetHSM #containers and has been split out of the nethsm crate.
#Rust #RustLang #Nitrokey #ArchLinux #Signstar #DigitalSignature #Cryptography
-
We just released version 0.3.0 of the nethsm-cli #RustLang #crate. 🥳
In this release of the `nethsm` #CLI we have added improvements ensuring the robustness of its use when handling keys and improved documentation for the use of namespaces. 🔑
https://crates.io/crates/nethsm-cli/0.3.0
#Nitrokey #NetHSM #HSM #ArchLinux #cryptography #DigitalSignature #encryption #decryption #OpenPGP
-
Aaand configured clean OpenID / OIDC login with my Keycloak IdP 🙂 With PassKey based login via a Nitrokey USB token. Nice!
-
Hat jemensch schon einmal das Login der Schweizer Behörden (AGOV-Login, siehe https://www.agov.admin.ch/de) mit einem Nitrokey 3 getestet und kann etwas zur Kompatibilität sagen?
Geht das oder braucht es "zwingend" einen Schlüssel von Yubico oder Token2 (beide mit L2-Zertifizierung)?
Solo2-Schlüssel gehen jedenfalls nicht und die sind wohl eh EOL. Ich möchte gerne einen Schlüssel mit einer Open-Source-Firmware benutzen.
@nitrokey #nitrokey #agov #yubikey #schweiz #OpenSource #securitykey
-
⏰ While 2024 is reaching the finish line, we‘d like to take a moment to thank everyone who is supporting us on our mission to secure the digital life. 🛡
We‘re truly grateful for having such loyal customers. 🙏We wish you happy holidays! 🎄
May 2025 be the year we all wish for! 💪
Stay secure! 🙂#nitrokey #cybersecurity #staysecure #nitrokeypro #opensource #internetsecurity #securitykey #usbkey #secureyourdigitallife
-
updated #fido2 #fido #securitykey #comparison draft Version 0.8
#yubikey #nitrokey #gotrust #feitian #solokey #titan #google
#mfa #u2f@Fr333k @matthegap @shellsharks @FritzAdalis
@heisecIf updates are needed Post a reply here
Credits to
-
@thibaultamartin very happy with a @nitrokey myself.
-
My #nitrokey survived an encounter with my washing machine. I am amazed...
-
@onni Hochwertige Produkte unterstütze ich jederzeit. Billig-Schrott der beim simplen Abziehen vom USB-Port direkt in seine Einzelteile zerfällt, frei nach der Devise: Teuer, aber schlecht - nein danke.
-
"Der eAT wird als Plastikkarte mit Chip für biometrische Daten, persönliche Daten und Nebenbestimmungen erstellt."
Ist bestimmt ein #Nitrokey, deswegen dauert das so lange.
-
@nitrokey Hi, what is the #nitrokey 3 fault about?
https://shop.nitrokey.com/shop/nk3cf-nitrokey-3c-nfc-fault-930 -
Gerade festgestellt, dass ich immer noch die Nitrokey Propaganda per Mail kriege. Hoffentlich funktioniert das Abmelden wenigstens. Solche Produkte unterstütze ich nicht.
-
Seeing the latest video hit #1 in the studio dashboard is a great reminder of why I started Terminal Tilt.
780 views in less than 7 hours on a video about hardware security keys? You all prove there’s a massive hunger for privacy and right-to-repair content.
Huge thank you to everyone who watched and shared!
If you haven't watched it yet, its available here: https://www.youtube.com/watch?v=lQlN84gEb9c
#DigitalSovereignty #Privacy #OpSec #RightToRepair #OpenSource #Token2 #Yubikey #Nitrokey #TerminalTIlt
-
🚨 New Video: Protecting You From Yourself - The Token2 Review
We have looked at the industry standard (YubiKey) and the philosophical idealist (Nitrokey). Today, we’re looking at the aggressor: Token2.
The PIN+ Dual Release 3.3 and the Bio3 come in at nearly half the price of the competition, but there is a catch. This Swiss company doesn't care about convenience; they care about correctness. From hardware-enforced complex PINs to a literal war on legacy TOTP codes, Token2 assumes your ego is your biggest vulnerability.
Is this cynical, locked-down approach exactly what we need for true digital sovereignty, or is the clunky user experience a dealbreaker? Let's find out if this is the ultimate punk rock choice for your threat model.
Part 5 of the Sovereign Authentication series.
100% human made. #NoAI :NoAI:
▶️ YouTube: https://www.youtube.com/watch?v=lQlN84gEb9c
📺 PeerTube: https://gnulinux.tube/w/fZbyKea1b6QJVQoFE4oQso💬 Join our sovereign community on Stoat: https://stt.gg/GgB6HBTv
☕ Support the mission: https://liberapay.com/terminaltilt
🤝 Become a channel member: https://www.youtube.com/@TerminalTilt/join#TerminalTilt #NoAI #Privacy #Security #PasswordManager #Token2 #Nitrokey #Yubikey #Yubico #FOSS #OpenSource #Linux #Cybersecurity #SelfHosted #DeGoogle #DigitalSovereignty #QueerCreator #DisabledCreator #HumanMade #TechEthics
-
What is wrong with hardware Passkeys? Why does Yubikey and Nitrokey have only 25-100 slots?
Meanwhile OpenSource* Pico keys has infinite slots, but of course it is DIY, and getting touch and NFC to it is pain. https://www.picokeys.com/pico-fido/
-
I have hit 2,000 subscribers on my YouTube channel. It is encouraging to see more people value #NoAI #OpenSource #RightToRepair and #DigitalSovereignty
My latest review of the Nitrokey 3 is live now, exploring why doing things the right way is often inconvenient, but always worth it.
The video is here if you would like to watch: https://www.youtube.com/watch?v=7I65RPlxqdY
Thank you for your support!
Lets keep fighting to make the world a better place!
#TerminalTilt #Nitrokey #FOSS #OpenSource #Yubikey #Privacy #Security
-
🚨 New Video: Virtue is Inconvenient - The Nitrokey 3 Review
In my last video, I crowned the YubiKey 5 as the "King of Keys" but it has a fatal flaw. It is proprietary. For those of us who believe in digital sovereignty and the right to audit our own hardware, blind trust is not an option.
Then there is Nitrokey 3A NFC. It promises open-source firmware, transparent design, and code written in memory safe Rust. But does "open" actually mean "good?" Today, we look at whether the moral high ground is worth the inconvenience, why the Android experience might be a deal breaker, and who should actually buy this device.
Part 4 of the Sovereign Authentication series.
100% human made. #NoAI :NoAI:
▶️ YouTube: https://www.youtube.com/watch?v=7I65RPlxqdY
📺 PeerTube: https://gnulinux.tube/w/gtTcaBH4GTEKMunR8CUiaX
Support the mission: ☕ https://liberapay.com/terminaltilt
#TerminalTilt #NoAI #Privacy #Security #PasswordManager #Nitrokey #Yubikey #Yubico #FOSS #OpenSource #Linux #Cybersecurity #SelfHosted #DeGoogle #DigitalSovereignty #QueerCreator #DisabledCreator #HumanMade #TechEthics
-
Nitorkey App 2 im Test
#Nitrokey ist mit der Nitrokey App 2 auf dem richtigen Weg die Benutzerfreundlichkeit seiner Hardwaretokens weiter zu erhöhen.
https://strobelstefan.de/blog/2026/02/22/nitorkey_app_2_im_test.html
-
Terminal Tilt: Upcoming Schedule
Tomorrow: Divoom Pixoo 64 Review.
Monday, Feb 23: Sovereign Authentication (Part 3) – The YubiKey 5 Series Review.
Feb 26: Keychron Q1 V2 – 4 Years Later.
March 2: Sovereign Authentication (Part 4) – Nitrokey 3A NFC Review.
March 5: Epomaker TH99 Pro Review.
March 9: Sovereign Authentication (Part 5) - Token2 Keys Review
https://www.youtube.com/@TerminalTilt
#TerminalTilt #DigitalSovereignty #RightToRepair #Privacy #SelfHosted #YubiKey #Nitrokey #Keychron #Epomaker #Token2 #Divoom #Pixoo64 #DivoomPixoo64 #Zettlr
-
Well done #Nitrokey GmbH for making your position clear!
The image is a scan of a business card that was included with my Nitrokey purchase 😀 -
I have officially deleted my Amazon account and cut ties with their ecosystem entirely. For a long time, the convenience of Prime felt like a necessary evil, especially since they have a warehouse in my city and can do same day shipping. But I can no longer reconcile the big tech giant's behavior with the values I promote at Terminal Tilt. As a privacy advocate and FOSS supporter, continuing to feed the machine feels increasingly hypocritical.
Ethically, their treatment of labor is indefensible. Between the terrible warehouse conditions and the dark patterns designed to make canceling subscriptions nearly impossible, it is clear they view both employees and customers as numbers to be exploited, with contempt. Their anti-competitive practices have done irreparable harm to small businesses and independent creators who are forced to play in a rigged sandbox.
As an FSF and EFF member, I believe privacy is a fundamental right. Amazon's business model relies on massive data harvesting and a huge surveillance network that I simply do not want to be a part of. Deleting my account is my way of reclaiming my digital sovereignty and refusing to let my personal data be a product in their inventory.
The change also affects how I handle Terminal Tilt going forward. I am officially ending the use of Amazon affiliate links for the channel. While the links are a standard revenue stream for most creators, I refuse to track my audience into the Amazon ecosystem just for a small commission. I would rather the channel grow slower and more honestly than profit from a company that actively works against user freedom. Convenience is the enemy of sovereignty.
When I review products now, whether it is the security keys from @nitrokey , @yubico , and Token2 or open source hardware, I will provide links to direct manufacturers or ethical, privacy-respecting retailers instead. Convenience should never be the primary metric for our choices.
If you want to support my work on Linux, privacy, and the #NoAI movement, I encourage you to use my LiberaPay or Ko-Fi links. Supporting creators directly ensures that the content remains independent and free from the influence of the Epstein class and corporate overlords. You can find all my direct support links on my self-hosted Linkstack: https://links.terminaltilt.com
It feels good to be out. It is time to prioritize people and principles over same-day shipping.
#DeleteAmazon #AmazonBoycott #Amazon #Privacy #FOSS #Linux #TerminalTilt #EthicalConsumerism #Ethics #InfoSec #Yubikey #Nitrokey #Token2 #2FA #MFA #Surveillance #SurveillanceCapitalism #DigitalSovereignty #SelfHosting
-
It's been a while since I've last used #crypto (and by that I don't mean coins but oldschool #cryptography : encrypting and signing mails, etc.), and lately I've only used #gpg to encrypt my #pass vault.
However, I wanted to up my game a little, so here it comes: For the first time I got myself a hardware token. I opted for #yubikey even though #nitrokey is probably the better option, because of #opensource. But I wanted my first steps to be smooth ones, and also try out all the different operational scenarios; and all research said that Yubikey is the better supported and the more versatile option (maybe I'll switch to a #nitrokey later on).
I went a bit overboard with the setup as well. I got myself some new USB drives, one flashed with #tails - a portable live #linux system by the @torproject developers, to boot with it a machine #offthegrid on which I'd create my keys. A #gnupg main key just for certification, and three subkeys for signing, encryption and authentication. The main key was moved to two backup USB drives, the subkeys on two Yubikeys (which as a bit of a hassle as usually you are only allowed to move them to one).
While the private main key will never see the light of day (i.e. just stay on the thumbdrives or be imported by the off-grid tails system), the subkeys will live on my tokens (which are not extractable as well).
They expire every year so I'd need to renew them (with the main key on tails), my identities are tied to the main key, and if any key is compromized I can easily create new ones with that main key.
To me that seems pretty sound, and a lot of overkill, tbh :D But it was also quite fun.
Next up: Switching my environment to use Yubikey and my new GPG keys instead of #ssh etc. And after that I'll give #2FA a try. And if I am not on the PC I'll guess I'll read some more about #EllipticCurveCryptography. First time I am using those algorithms. So long, #RSA, you've been a great companion, and hello #ed25519, nice to meet you.
-
As I need an Ed25519-SK SSH key generated with a hardware token, I tried to use my Nitrokey #FIDO2 for that, but: no.
Years ago, #ed25519 had experimentally been added to the firmware (not released) but later #Nitrokey stated that customers should've donated on top of the selling price to get firmware updates & advised to buy the new product instead.
The latter would be OK if the old key wasn't sold anymore, but it is still sold & the firmware was last updated in 2021.
https://github.com/Nitrokey/nitrokey-fido2-firmware/issues/39#issuecomment-1721164809
-
We have just released version 0.6.0 of the nethsm #RustLang library #crate 🥳
This release focuses on making the interface more robust using dedicated types for key IDs, adding validation of bit lengths for block cipher and #RSA keys and requiring unsigned integers for values that can not be negative (such as bit lengths or ports).
https://crates.io/crates/nethsm/0.6.0
#Nitrokey #NetHSM #cryptography #ArchLinux #DigitalSignature #encryption #decryption #OpenPGP #HSM
-
We have just released version 0.2.2 of the nethsm-cli #crate 🎉
https://crates.io/crates/nethsm-cli/0.2.2
With this release the `nethsm` #CLI saw improvements for the restoring from backup and switched to the common nethsm-config crate for configuration handling.
#RustLang #Nitrokey #NetHSM #HSM #cryptography #DigitalSignature #signing #encryption #decryption #ArchLinux
