#yubikey — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #yubikey, aggregated by home.social.
-
Running out of YubiKey slots? 😬 This short dives into a clever strategy for managing your TOTP accounts – prioritizing what gets the YubiKey treatment and what gets stored elsewhere. Secure MFA doesn't have to be a pain! Check it out. #YubiKey #TOTP #SecureMFA
-
Running out of YubiKey slots? 😬 This short dives into a clever strategy for managing your TOTP accounts – prioritizing what gets the YubiKey treatment and what gets stored elsewhere. Secure MFA doesn't have to be a pain! Check it out. #YubiKey #TOTP #SecureMFA
-
Running out of YubiKey slots? 😬 This short dives into a clever strategy for managing your TOTP accounts – prioritizing what gets the YubiKey treatment and what gets stored elsewhere. Secure MFA doesn't have to be a pain! Check it out. #YubiKey #TOTP #SecureMFA
-
Running out of YubiKey slots? 😬 This short dives into a clever strategy for managing your TOTP accounts – prioritizing what gets the YubiKey treatment and what gets stored elsewhere. Secure MFA doesn't have to be a pain! Check it out. #YubiKey #TOTP #SecureMFA
-
Are you on the safe side yet? 🛡️
In an era of sophisticated phishing and data breaches, relying on passwords or SMS codes is like locking your front door but leaving the key under the mat. For a robust level of private security, I’ve integrated Yubico Yubikey into my daily routine as the ultimate hardware root of trust.
The true value of "Cold" Security
Hardware authenticators offer unparalleled security. Their physical nature means cryptographic keys are embedded directly, making them impossible to copy, extract, or steal remotely. No physical device, no access. Period.
My "Strict Security" Setup
I’ve minimized my attack surface by removing the weakest links:
1. Phone-Free: I have disabled phone number linkage and SMS authentication wherever possible to eliminate SIM-swapping risks.
2. Passwordless: Where supported, I use FIDO2/WebAuthn. No password means no password can be phished.
3. The Backup Rule: I use a minimum of two keys. My primary key is always with me, and a backup key is hidden in a secure, off-site location.
Hardware-Signed Workflow
I leverage the full multi-protocol potential of the key:
- GPG & Git: I use GPG primarily for signing git commits. When I push code, I am physically "touching" the hardware to sign that digital information.
- PIV/SSH: Secure access to servers without resident private keys on the machine.
- OTP & Static Passwords: Bridges for legacy services.
The Vault Strategy
For passwords and sensitive metadata, I rely on Bitwarden. Access to my vault is strictly locked behind my hardware keys.
> No, I'm not "that paranoid" ... yet. But I do keep an eye on the compromise of central servers. That’s why I’m planning to implement a fully self-hosted, self-controlled vault solution soon.
I’d love to hear your thoughts – what are your favorite self-hosted security stacks?
#CyberSecurity #YubiKey #Bitwarden #Infosec #Privacy #MFA #PGP #SSH #SecurityEngineering #SelfHosted
-
Are you on the safe side yet? 🛡️
In an era of sophisticated phishing and data breaches, relying on passwords or SMS codes is like locking your front door but leaving the key under the mat. For a robust level of private security, I’ve integrated Yubico Yubikey into my daily routine as the ultimate hardware root of trust.
The true value of "Cold" Security
Hardware authenticators offer unparalleled security. Their physical nature means cryptographic keys are embedded directly, making them impossible to copy, extract, or steal remotely. No physical device, no access. Period.
My "Strict Security" Setup
I’ve minimized my attack surface by removing the weakest links:
1. Phone-Free: I have disabled phone number linkage and SMS authentication wherever possible to eliminate SIM-swapping risks.
2. Passwordless: Where supported, I use FIDO2/WebAuthn. No password means no password can be phished.
3. The Backup Rule: I use a minimum of two keys. My primary key is always with me, and a backup key is hidden in a secure, off-site location.
Hardware-Signed Workflow
I leverage the full multi-protocol potential of the key:
- GPG & Git: I use GPG primarily for signing git commits. When I push code, I am physically "touching" the hardware to sign that digital information.
- PIV/SSH: Secure access to servers without resident private keys on the machine.
- OTP & Static Passwords: Bridges for legacy services.
The Vault Strategy
For passwords and sensitive metadata, I rely on Bitwarden. Access to my vault is strictly locked behind my hardware keys.
> No, I'm not "that paranoid" ... yet. But I do keep an eye on the compromise of central servers. That’s why I’m planning to implement a fully self-hosted, self-controlled vault solution soon.
I’d love to hear your thoughts – what are your favorite self-hosted security stacks?
#CyberSecurity #YubiKey #Bitwarden #Infosec #Privacy #MFA #PGP #SSH #SecurityEngineering #SelfHosted
-
Ho provato per settimane le YubiKey 5 NFC e 5C NFC, ecco com’è andata
Ho provato le YubiKey 5 NFC e 5C NFC su Linux, Windows e Android: autenticazione FIDO2, passkey, codici TOTP, firma dei commit con OpenPGP, Yubico Authenticator e i limiti pratici dell’NFC.https://yoota.it/ho-provato-per-settimane-le-yubikey-5-nfc-e-5c-nfc-ecco-come-andata/
-
Ho provato per settimane le YubiKey 5 NFC e 5C NFC, ecco com’è andata
Ho provato le YubiKey 5 NFC e 5C NFC su Linux, Windows e Android: autenticazione FIDO2, passkey, codici TOTP, firma dei commit con OpenPGP, Yubico Authenticator e i limiti pratici dell’NFC.https://yoota.it/ho-provato-per-settimane-le-yubikey-5-nfc-e-5c-nfc-ecco-come-andata/
-
From an extremely generous, anonymous donor. Of the keys in my lab/museum, the story for this one is probably the best ever -- gonna be telling this one for years!
-
From an extremely generous, anonymous donor. Of the keys in my lab/museum, the story for this one is probably the best ever -- gonna be telling this one for years!
-
From an extremely generous, anonymous donor. Of the keys in my lab/museum, the story for this one is probably the best ever -- gonna be telling this one for years!
-
From an extremely generous, anonymous donor. Of the keys in my lab/museum, the story for this one is probably the best ever -- gonna be telling this one for years!
-
From an extremely generous, anonymous donor. Of the keys in my lab/museum, the story for this one is probably the best ever -- gonna be telling this one for years!
-
Minor annoyance with Yubikey and Fedora, I have to unplug and plug it back again everytime I restart. Otherwise it won't give me the PIN dialog at all.
-
I've just published the first v1.0.0 release candidate for Passchain (formerly HW Fido2 Provider)!
This is a big step from something that kind of work enough to be able to use security keys without the Play Services [1][2] to a more stable app.
Among other things, it benefit from the recent improvement made for the feature on microG (it uses its lib): for example we now have cross-device login => you can theoretically login on your TV with your Yubikey now 😃
[1] or microG
[2] there are now other apps like Authnkey that allow it. They didn't exist when I started Passchain, the Play Service was the only way to use them on Android#passchain #hwFido2Provider #passkey #fido2 #yubikey #android #microg
-
I've just published the first v1.0.0 release candidate for Passchain (formerly HW Fido2 Provider)!
This is a big step from something that kind of work enough to be able to use security keys without the Play Services [1][2] to a more stable app.
Among other things, it benefit from the recent improvement made for the feature on microG (it uses its lib): for example we now have cross-device login => you can theoretically login on your TV with your Yubikey now 😃
[1] or microG
[2] there are now other apps like Authnkey that allow it. They didn't exist when I started Passchain, the Play Service was the only way to use them on Android#passchain #hwFido2Provider #passkey #fido2 #yubikey #android #microg
-
I've just published the first v1.0.0 release candidate for Passchain (formerly HW Fido2 Provider)!
This is a big step from something that kind of work enough to be able to use security keys without the Play Services [1][2] to a more stable app.
Among other things, it benefit from the recent improvement made for the feature on microG (it uses its lib): for example we now have cross-device login => you can theoretically login on your TV with your Yubikey now 😃
[1] or microG
[2] there are now other apps like Authnkey that allow it. They didn't exist when I started Passchain, the Play Service was the only way to use them on Android#passchain #hwFido2Provider #passkey #fido2 #yubikey #android #microg
-
I've just published the first v1.0.0 release candidate for Passchain (formerly HW Fido2 Provider)!
This is a big step from something that kind of work enough to be able to use security keys without the Play Services [1][2] to a more stable app.
Among other things, it benefit from the recent improvement made for the feature on microG (it uses its lib): for example we now have cross-device login => you can theoretically login on your TV with your Yubikey now 😃
[1] or microG
[2] there are now other apps like Authnkey that allow it. They didn't exist when I started Passchain, the Play Service was the only way to use them on Android#passchain #hwFido2Provider #passkey #fido2 #yubikey #android #microg
-
I've just published the first v1.0.0 release candidate for Passchain (formerly HW Fido2 Provider)!
This is a big step from something that kind of work enough to be able to use security keys without the Play Services [1][2] to a more stable app.
Among other things, it benefit from the recent improvement made for the feature on microG (it uses its lib): for example we now have cross-device login => you can theoretically login on your TV with your Yubikey now 😃
[1] or microG
[2] there are now other apps like Authnkey that allow it. They didn't exist when I started Passchain, the Play Service was the only way to use them on Android#passchain #hwFido2Provider #passkey #fido2 #yubikey #android #microg
-
Продолжаю играться с юбикеем и добавлять в него и в рутокен пасскеи на всякие сайты. Уже забил гугл, яндекс, вк, хвиттер и некоторое по мелочи.
Программа для юбикея пишет, что в нем аж 100 ячеек под это дело. Сколько их в рутокене, я не знаю, но судя по лотам на озоне, их штук 16.
Больше всего меня удивило, что подобной штуки нет на госуслугах и нет даже второго фактора с ключом, только TOTP через гугл аутентификатор, например. Спасибо и на этом.
Хотел попробовать запихать туда GPG-ключ, но похоже, что готовый туда не залить, только генерировать новый. Ну и на работе у нас "устройства чтения смарт-карт" обрезаны политиками.
-
OpenAI launches Advanced Account Security with YubiKey support to lock down ChatGPT accounts
https://fed.brid.gy/r/https://nerds.xyz/2026/05/openai-advanced-account-security-chatgpt/
-
I was tired of typing in my long passphrase constantly on my laptop, so I got myself a Yubikey. Now I have a shirt but secure PIN
-
I was tired of typing in my long passphrase constantly on my laptop, so I got myself a Yubikey. Now I have a shirt but secure PIN
-
I was tired of typing in my long passphrase constantly on my laptop, so I got myself a Yubikey. Now I have a shirt but secure PIN
-
I was tired of typing in my long passphrase constantly on my laptop, so I got myself a Yubikey. Now I have a shirt but secure PIN
-
I was tired of typing in my long passphrase constantly on my laptop, so I got myself a Yubikey. Now I have a shirt but secure PIN
-
-
So @yubico has these nano keys, meant to sit in your laptop unobtrusively long term. They still stick out, though, so I wonder, why not pack one of these into a @frameworkcomputer expansion module so they can fully realize that function, for those of us with modular laptops? #FrameworkLaptop #yubikey
-
So @yubico has these nano keys, meant to sit in your laptop unobtrusively long term. They still stick out, though, so I wonder, why not pack one of these into a @frameworkcomputer expansion module so they can fully realize that function, for those of us with modular laptops? #FrameworkLaptop #yubikey
-
So @yubico has these nano keys, meant to sit in your laptop unobtrusively long term. They still stick out, though, so I wonder, why not pack one of these into a @frameworkcomputer expansion module so they can fully realize that function, for those of us with modular laptops? #FrameworkLaptop #yubikey
-
So @yubico has these nano keys, meant to sit in your laptop unobtrusively long term. They still stick out, though, so I wonder, why not pack one of these into a @frameworkcomputer expansion module so they can fully realize that function, for those of us with modular laptops? #FrameworkLaptop #yubikey
-
So @yubico has these nano keys, meant to sit in your laptop unobtrusively long term. They still stick out, though, so I wonder, why not pack one of these into a @frameworkcomputer expansion module so they can fully realize that function, for those of us with modular laptops? #FrameworkLaptop #yubikey
-
Agentic AI workflow idea: monitor my email inbox and whenever I receive a "one time code", identify that site's help center and/or feature request site and relentlessly pester them to enable real MFA with #Yubikey so i don't have to move away from page just to grab a code for login.
If someone's built this, please let me know.
-
Gap: Présentation OpenPGP + Atelier grand public YubiKey, Le samedi 25 avril 2026 de 11h00 à 18h00. https://www.agendadulibre.org/events/34795 #monnaieLibre #installParty #june #dji #foopgp #openpgp #yubikey #djibian #securite #openpgpId #atelier #logicielsLibres #libreEnFete2026 #adieuWindows
-
Gap: Présentation OpenPGP + Atelier grand public YubiKey, Le samedi 25 avril 2026 de 11h00 à 18h00. https://www.agendadulibre.org/events/34795 #monnaieLibre #installParty #june #dji #foopgp #openpgp #yubikey #djibian #securite #openpgpId #atelier #logicielsLibres #libreEnFete2026 #adieuWindows
-
Gap: Présentation OpenPGP + Atelier grand public YubiKey, Le samedi 25 avril 2026 de 11h00 à 18h00. https://www.agendadulibre.org/events/34795 #monnaieLibre #installParty #june #dji #foopgp #openpgp #yubikey #djibian #securite #openpgpId #atelier #logicielsLibres #libreEnFete2026 #adieuWindows
-
Gap: Présentation OpenPGP + Atelier grand public YubiKey, Le samedi 25 avril 2026 de 11h00 à 18h00. https://www.agendadulibre.org/events/34795 #monnaieLibre #installParty #june #dji #foopgp #openpgp #yubikey #djibian #securite #openpgpId #atelier #logicielsLibres #libreEnFete2026 #adieuWindows
-
Gap: Présentation OpenPGP + Atelier grand public YubiKey, Le samedi 25 avril 2026 de 11h00 à 18h00. https://www.agendadulibre.org/events/34795 #monnaieLibre #installParty #june #dji #foopgp #openpgp #yubikey #djibian #securite #openpgpId #atelier #logicielsLibres #libreEnFete2026 #adieuWindows
-
#YubiKeyManager: Sicherheitslücke ermöglicht Ausführung untergeschobenen Codes | Security https://www.heise.de/news/YubiKey-Manager-Sicherheitsluecke-ermoeglicht-Ausfuehrung-untergeschobenen-Codes-11262018.html #Patchday #YubiKey
-
«YubiKey Manager — Sicherheitslücke ermöglicht Ausführung untergeschobenen Codes:
Yubico warnt vor einer Suchpfad-Schwachstelle im YubiKey Manager, libfido2 und python-fido2. Updates korrigieren die Fehler.»Eine IT-Security Meldung die wirklich sicher ist und Updates nun wirklich sofort vor dem Wochenende gemacht werden müssen.
#update #itsicherheit #itsecurity #yubikey #libfido2 #python #fido2 #passkey #login #passkeys
-
what's the deal with the Yubikey pop-up when you use NFC? It's highly irritating and on iPhone it seems to interfere with other logins - instead of approving a login, I get the pop-up on the second tap.
Is there any way to deactivate the pop-up, short of replacing the Yubikey with a competitor?
#Yubikey #Yubikey5nfc #Yubico #iPhone #NFC #enshittification
-
Finally made myself prepare and send a follow-up on a #1Password bug on #macOS with hardware security keys. Recorded them a video (+ the usual debug logs), hope this helps.
I think I ranted about this before, but I get so quickly demotivated when reporting bugs. I have enough energy for the initial report, but the follow-ups (especially when they can't reproduce) make me lose all interest. Companies having layers of people between me and developers make it all the more tedious.
-
🚨 New Video: One Key To Rule Them All - The OneKey Classic 1S Pure Review
Do you have to choose between a security key like a Yubikey for logins or a hardware wallet for your crypto? Today we are looking at the OneKey Classic 1S Pure, a battery-free, open-source device that aims to handle both without compromising on digital sovereignty. We dive into its repairability, FIDO2/U2F support, and why its raw, industrial philosophy might make it the ultimate tool for true self-custody.
Part 6 of the Sovereign Authentication series.
100% human made. #NoAI :NoAI:
▶️ YouTube: https://www.youtube.com/watch?v=25f1ywRyw3M
💬 Join our sovereign community on Stoat: https://stt.gg/GgB6HBTv
☕ Support the mission: https://liberapay.com/terminaltilt
🤝 Become a channel member: https://www.youtube.com/@TerminalTilt/join#TerminalTilt #NoAI #Privacy #Security #HardwareWallet #CryptoWallet #BTC #Crypto #OneKey #Yubikey #Yubico #FOSS #OpenSource #Linux #Cybersecurity #DeGoogle #DigitalSovereignty #QueerCreator #DisabledCreator #HumanMade #TechEthics
-
🚨 New Video: One Key To Rule Them All - The OneKey Classic 1S Pure Review
Do you have to choose between a security key like a Yubikey for logins or a hardware wallet for your crypto? Today we are looking at the OneKey Classic 1S Pure, a battery-free, open-source device that aims to handle both without compromising on digital sovereignty. We dive into its repairability, FIDO2/U2F support, and why its raw, industrial philosophy might make it the ultimate tool for true self-custody.
Part 6 of the Sovereign Authentication series.
100% human made. #NoAI :NoAI:
▶️ YouTube: https://www.youtube.com/watch?v=25f1ywRyw3M
💬 Join our sovereign community on Stoat: https://stt.gg/GgB6HBTv
☕ Support the mission: https://liberapay.com/terminaltilt
🤝 Become a channel member: https://www.youtube.com/@TerminalTilt/join#TerminalTilt #NoAI #Privacy #Security #HardwareWallet #CryptoWallet #BTC #Crypto #OneKey #Yubikey #Yubico #FOSS #OpenSource #Linux #Cybersecurity #DeGoogle #DigitalSovereignty #QueerCreator #DisabledCreator #HumanMade #TechEthics
-
🚨 New Video: One Key To Rule Them All - The OneKey Classic 1S Pure Review
Do you have to choose between a security key like a Yubikey for logins or a hardware wallet for your crypto? Today we are looking at the OneKey Classic 1S Pure, a battery-free, open-source device that aims to handle both without compromising on digital sovereignty. We dive into its repairability, FIDO2/U2F support, and why its raw, industrial philosophy might make it the ultimate tool for true self-custody.
Part 6 of the Sovereign Authentication series.
100% human made. #NoAI :NoAI:
▶️ YouTube: https://www.youtube.com/watch?v=25f1ywRyw3M
💬 Join our sovereign community on Stoat: https://stt.gg/GgB6HBTv
☕ Support the mission: https://liberapay.com/terminaltilt
🤝 Become a channel member: https://www.youtube.com/@TerminalTilt/join#TerminalTilt #NoAI #Privacy #Security #HardwareWallet #CryptoWallet #BTC #Crypto #OneKey #Yubikey #Yubico #FOSS #OpenSource #Linux #Cybersecurity #DeGoogle #DigitalSovereignty #QueerCreator #DisabledCreator #HumanMade #TechEthics
-
🚨 New Video: One Key To Rule Them All - The OneKey Classic 1S Pure Review
Do you have to choose between a security key like a Yubikey for logins or a hardware wallet for your crypto? Today we are looking at the OneKey Classic 1S Pure, a battery-free, open-source device that aims to handle both without compromising on digital sovereignty. We dive into its repairability, FIDO2/U2F support, and why its raw, industrial philosophy might make it the ultimate tool for true self-custody.
Part 6 of the Sovereign Authentication series.
100% human made. #NoAI :NoAI:
▶️ YouTube: https://www.youtube.com/watch?v=25f1ywRyw3M
💬 Join our sovereign community on Stoat: https://stt.gg/GgB6HBTv
☕ Support the mission: https://liberapay.com/terminaltilt
🤝 Become a channel member: https://www.youtube.com/@TerminalTilt/join#TerminalTilt #NoAI #Privacy #Security #HardwareWallet #CryptoWallet #BTC #Crypto #OneKey #Yubikey #Yubico #FOSS #OpenSource #Linux #Cybersecurity #DeGoogle #DigitalSovereignty #QueerCreator #DisabledCreator #HumanMade #TechEthics
