LemmyHead

@LemmyHead@lemmy.ml

This profile is from a federated server and may be incomplete. Browse more on the original instance.

Scraft161, to privacy
@Scraft161@tsukihi.me avatar

Hardware security key options?

I've been thinking about getting a hardware security key and have heard of yubikey before; but I want to see what my options are and if they are worth it in your opinion.
My current setup is a local KeePassXC database (that I sync between my PC and phone and also acts as TOTP authenticator app), I know that KeePass supports hardware keys for unlocking the database.

I am personally still of the belief that passwords are the safest when done right; but 2FA/MFA can greatly increase security on top of that (again, if done right).
The key work work together with already existing passwords, not replace them.

As I use linux as my primary OS I do expect it to support it and anything that doesn't I will have to pass on.

PS: what are the things I need to know about these hardware keys that's not being talked about too much, I am very much delving into new territory and want to make sure I'm properly educated before I delve in.

@linux @technology @technology @privacy

LemmyHead,

Nitrokey isn’t fully open source though. The secure element is proprietary. But that’s not their fault, OSS secure elements aren’t a thing yet unfortunately, but some companies wanna bring a change in that

LemmyHead,

It’s too bad that it’s so fragmented nowadays.

LemmyHead,

Molly as hardened signal alternative

LemmyHead,

Also not a fan of Session missing FS. So I replaced it with SimpleX, but it’s quite a dead community. The app also feels like something beta, but I have high hopes for it

LemmyHead,

Cool. Very useful to just pinpoint on the goal of stopping

LemmyHead,

Same here. I’ve always wondered what dbus actually was and I’m glad OP asked

LemmyHead, (edited )

Their customer support is the worst I’ve ever experienced though. If nothing goes wrong,I guess they’re okay.

I’d recommend skiff instead as not self hosted alternative

LemmyHead,

Both of them are just encrypted cloud storage, not a private cloud like nextcloud

LemmyHead,

I’ve always liked morrocan pancakes, which are also a layered type of food, so decided to make them myself one day. So much much work for something that doesn’t taste at least half as good as the ones from the bakery… Never again I told myself!

LemmyHead,

Also a noob, but I think Microsoft improved low-level access in recent DX versions

LemmyHead,

I think it’s more about portability and making it easier for windows devs to support Linux for their games

LemmyHead,

Sneak attack? That’s like THE definition of a ninja; made in Japan

LemmyHead,

What about a hardware key? Like nitrokey or yubikey?

LemmyHead,

I don’t get all the noise around AUR being unsafe. Just verify the PKGBUILDS whenever you install or update something.

LemmyHead,

I would argue that it’s their own fault then. Laziness is not a valid excuse to put yourself so much at risk. If you start doing it consistently, it becomes a habit and won’t take much effort. Of course, the familiarity with PKBUILD syntax has a learning curve

But a peer-reviewing system would be a better approach in AUR. Weird that it’s not been implemented yet.

LemmyHead,

How would peer reviewing in a user repo be more a sense of false security compared to official repos? I don’t know any of the arch maintainers, so for me it’s also pure trust they don’t do shady stuff.

Peer reviewing would not be failproof for sure, but at least it would give more security than not reviewing the pkbuilds, and especially to those that aren’t too familiar with them

LemmyHead,

Lokinet is a modern alternative to both

Next smartphone I buy, which one do you recommend?

Things that make me angry about my current smartphone Samsung Galaxy S21Ultra on a Verizon plan is the mandatory software updates in which they install WITHOUT MY PERMISSION stupid apps like Netflix and addictive gambling games and stacking block games and Candy crush. God knows what else they install without my permission. I...

LemmyHead,

Another vote for fairphone here, but for reasons others failed to mention: replaceable battery, so even after 2 years, it can feel like new and keep most of its value (to resell if wanted); 5 years of updates + warranty; support for after market roms. Then there’s also the fair ethics part of it

LemmyHead,

Not killing, but degrades in performance because batteries have a limited amount of charge cycles. The more intensive you use your phone, the faster the battery degrades

LemmyHead,

I’d discourage you from formatting and using Linux (as a long time Linux user myself). Keep your setup for your education because that’s most important. If you can, get another device to install Linux on and learn how to use it that way. It’ll also be very beneficial for your career

  • All
  • Subscribed
  • Moderated
  • Favorites
  • localhost
  • All magazines
    •
    Loading…
    Loading the web debug toolbar…
    Attempt #