#yubikey

These are public posts tagged with #yubikey. You can interact with them if you have an account anywhere in the fediverse.

Profoundly Nerdy

Are there good yubikey alternatives that are in a credit card form factor? Ideally something very cross platform friendly.

Something that holds cryptographic keys and can answer TOTP challenges, ideally.

#yubikey #cybersecurity #linux #android #windows

Jun 13, 2025, 21:09 · · 1 · 0
Zack Weinberg

I'm betting the answer here is "this isn't possible" but if anyone knows how to tell OpenSSH that when it's enumerating pubkeys it should check which of the two known authentication dongles is actually plugged into the computer, and only prompt me to unlock the SK key that belongs to that dongle, not both of them, please tell me how.

#openssh #yubikey

Jun 12, 2025, 14:37 · · 1 · 0
JayVii

Does anyone have experience with either #Yubikey, #Nitrokey or any other hardware security token for both #MFA/#2FA as well as #encryption via #PGP/#GPG or #SMIME?

In particular, I am looking at the Nitrokey 3A NFC. As far as I can tell, Yubico only sells #MFA tokens(?), unless the YubiKey 5 FIPS Series can hold encryption keys as well?

Both price and open hardware aspect definitely speak for Nitrokey, but I do not know anyone who owns such a token... Anyone who I can talk to?

Nitrokey 3A NFC

shop.nitrokey.com
Jun 04, 2025, 15:48 · · 1 · 0
Royce Williams

TIL that Pure Storage issues YubiKeys branded with their logo!

(eBay, not my listing:)

ebay.com/itm/135898756327

Interesting: Just over the side of the logo, the phrase "NO NFC" is seen (not sure if an add-on label, or part of the logo). NFC-enabled keys ship with NFC disabled by default until first power-up (and can be re-disabled in ykman -R / --restrict option):

yubico.com/getting-started/

... so I'm not sure if this means NFC is permanently disabled, but it seems likely. Will update when I get one.

#YubiKey

Closeup of YubiKey in a transparent antistatic bag. Key is oriented "portrait", angled away. Through the bag, the QR-like code, the serial, the "FIPS" label, and the PureStorage logo can be seen.
The Pure Storage logo - an orange hexagon as if drawn with a very thick line, with soft corners, and with a break in the lower-right, as if that side had been shortened but leaving the bottom each horizontal. The effect is like a very fat P.
May 31, 2025, 15:45 · · · 0 · 0
The Chris Dantes

Fuck #Authy. Fuck it in it's stupid ass. They got rid of the desktop version. Fine. It sucks, but I could deal with it. Then they dropped support for #GrapheneOS. Meaning I'm locked out of everything. Luckily I have a #YubiKey so I can get into most things. I guess it's time to move to something else.

May 27, 2025, 22:16 · · 0 · 0
Mad A. Argon :qurio:

I realized I didn't wear #yubikey on chain on my neck for 8 days (because of circumstances). And this is absolutely record for me, it was never so long until now!
Does it mean I have a problem? :neofox_laugh_tears_256:

I have it on me now. I couldn't feel so... naked? without armor? anymore.

#nerd #MagicalThinking

May 27, 2025, 15:24 · · 1 · 0
Norbert Tretkowski

Mein Nitrokey 3A Mini ist jetzt innerhalb von eineinhalb Jahren zum zweiten Mal defekt und ich bin froh, seit dessen ersten Ausfall immer einen Yubikey als Backup bei mir zu haben...

#Nitrokey #Yubikey

May 18, 2025, 08:25 · · 0 · 0
vascorsd

I have to say that I find it almost funny how broken the #yubikey fido2 /webauth is now after passkeys have started to be a thing. Was just trying to use it on the demo.yubico.com/ and the loops and amount of errors I see with popups appearing in front of me and talking about passkeys when it's nothing of the sort... And just keeps failing to authenticate... I mean I'm sure I've tried it before on this android phone using the chrome browser and it worked 🥲.

Yubico demo website

demo.yubico.com
May 14, 2025, 20:01 · · 0 · 0
S1m

Very happy to finally be able to use my yubikeys on my phone (GrapheneOS, without Play services) 🤗

Most of the pieces were already there, it only missed to be assembled into a Credential Provider, which is finally done with HW Fido2 Provider

#fido2 #passkey #yubikey #android

hw-fido2-provider

hw-fido2-provider

Codeberg.org
May 07, 2025, 20:25 · · · 1 · 0
Kevin Karhan :verified:

@Linux there are 3 big options you forgot that I know of which too ain't under #Cloudact aka. have no subsidiary/office/parent company in the #USA:

@monocles (email, messaging, managed #nextcloud hosting)
@Stuxhost (eMail & @nextcloud )
@nitrokey (a better alternative to @yubico / #Yubikey)

And for #PasswordManagers, there's also #Enpass for those that don't like #KeePassXC / #KeepPassDX / #KeePass and for organizations there's even #Passbolt as a centrally manageable solution. All of these allow #SelfCustody & #SelfHosting on-premise.

May 07, 2025, 01:23 · · · 0 · 0
David Nelson

Did you know you can manage resident #Passkeys on your #YubiKey or other #Fido2 key with just your web browser?

In Chrome:
–Open the settings screen
–"Privacy and Security"
–"Security"
–"Manage Security Keys"
–"Sign-in data"

Or you can put chrome://settings/securityKeys in the nav bar.

May 03, 2025, 18:59 · · 0 · 0
Marco Griep

@maexchen1 @scuba_zeus @vowe Stimme ich voll zu. Mich nervt mittlerweile auch das sämtliche banken bei denen ich bin eine App benötigen für den Login. Ich mein, warum eigentlich? Ich will keine Banking App auf dem Handy. Wenn der normale Login unsicher ist, dann bietet halt #Passkeys an oder die Unterstützung von #yubikey. Das sind gesetzte gesicherte Standards, muss doch nicht jeder seine eigene App Entwickeln die benötigt wird zum Banking. Als Option gut und schön, aber doch nicht als Pflicht.

Apr 25, 2025, 07:43 · · 1 · 0
Robyn

Mein #yubikey wird in #keepassxc nicht mehr erkannt bzw erkannt aber nicht mehr gelesen. 😥😵‍💫🙈

#PCSC läuft. Hab das auch nochmal neu installiert. Aber hat nichts gebracht. 😵‍💫

Hat jemensch eine Idee wie ich das fixen könnte? 😅🙈
#eh22

(base) robin@ms-li-n-16-013:~> keepassxc Warning: Ignoring XDG_SESSION_TYPE=wayland on Gnome. Use QT_QPA_PLATFORM=wayland to run on Wayland anyway. YubiKey: Failed to establish PCSC context. YubiKey: PCSC interface is disabled or not initialized. (base) robin@ms-li-n-16-013:~> sudo systemctl status pcscd.service [sudo] password for root: ● pcscd.service - PC/SC Smart Card Daemon Loaded: loaded (/usr/lib/systemd/system/pcscd.service; indirect; preset: disabled) Active: active (running) since Sat 2025-04-19 11:24:06 CEST; 1min 10s ago Invocation: 9329d05718c84027830ea578a2c56af5 TriggeredBy: ● pcscd.socket Docs: man:pcscd(8) Main PID: 5026 (pcscd) Tasks: 5 (limit: 18884) CPU: 56ms CGroup: /system.slice/pcscd.service └─5026 /usr/sbin/pcscd --foreground Apr 19 11:24:06 ms-li-n-16-013 systemd[1]: Started PC/SC Smart Card Daemon. (base) robin@ms-li-n-16-013:~> sudo systemctl status pcscd.socket ● pcscd.socket - PC/SC Smart Card Daemon Activation Socket Loaded: loaded (/usr/lib/systemd/system/pcscd.socket; enabled; preset: enabled) Active: active (running) since Sat 2025-04-19 11:22:07 CEST; 3min 28s ago Invocation: 5770cc7bcaed47f89f130f1d47cd9826 Triggers: ● pcscd.service Listen: /run/pcscd/pcscd.comm (Stream) CGroup: /system.slice/pcscd.socket Apr 19 11:22:07 ms-li-n-16-013 systemd[1]: Listening on PC/SC Smart Card Daemon Activation Socket.
Screenshot vom Yubikey Authenticator Failed to open smart card connection
(base) robin@ms-li-n-16-013:~> sudo systemctl status pcscd.service ● pcscd.service - PC/SC Smart Card Daemon Loaded: loaded (/usr/lib/systemd/system/pcscd.service; indirect; preset: disabled) Active: active (running) since Sat 2025-04-19 11:24:06 CEST; 9min ago Invocation: 9329d05718c84027830ea578a2c56af5 TriggeredBy: ● pcscd.socket Docs: man:pcscd(8) Main PID: 5026 (pcscd) Tasks: 5 (limit: 18884) CPU: 258ms CGroup: /system.slice/pcscd.service └─5026 /usr/sbin/pcscd --foreground Apr 19 11:29:47 ms-li-n-16-013 pcscd[5026]: 00000055 ../src/winscard_svc.c:408:ContextThread() Server protocol is 4:5 Apr 19 11:29:47 ms-li-n-16-013 pcscd[5026]: 00248831 ../src/winscard_svc.c:404:ContextThread() Communication protocol mismatch! Apr 19 11:29:47 ms-li-n-16-013 pcscd[5026]: 00000138 ../src/winscard_svc.c:406:ContextThread() Client protocol is 4:4 Apr 19 11:29:47 ms-li-n-16-013 pcscd[5026]: 00000008 ../src/winscard_svc.c:408:ContextThread() Server protocol is 4:5 Apr 19 11:29:47 ms-li-n-16-013 pcscd[5026]: 00359199 ../src/winscard_svc.c:404:ContextThread() Communication protocol mismatch! Apr 19 11:29:47 ms-li-n-16-013 pcscd[5026]: 00000026 ../src/winscard_svc.c:406:ContextThread() Client protocol is 4:4 Apr 19 11:29:47 ms-li-n-16-013 pcscd[5026]: 00000003 ../src/winscard_svc.c:408:ContextThread() Server protocol is 4:5 Apr 19 11:29:48 ms-li-n-16-013 pcscd[5026]: 00609843 ../src/winscard_svc.c:404:ContextThread() Communication protoco
Apr 19, 2025, 09:37 · · 4 · 0
Peter Kraume :typo3:

@LimeSurvey The new #2FA with #YubiKey doesn't work well in combination with @1password and the auto submit feature. Why didn't you implement #WebAuthn?

Apr 15, 2025, 13:37 · · 0 · 0
[ENC]BladeXP

Hat jemand Erfahrung wie lange man z.B. #yubikey als #passkey Verschnitt wo lagern kann?

Oder leiden die unter Flash typischen Alzheimer wenn man die zu lange lagert?

Apr 13, 2025, 14:40 · · 1 · 0
bash2

Hat jemensch schon einmal das Login der Schweizer Behörden (AGOV-Login, siehe agov.admin.ch/de) mit einem Nitrokey 3 getestet und kann etwas zur Kompatibilität sagen?

Geht das oder braucht es "zwingend" einen Schlüssel von Yubico oder Token2 (beide mit L2-Zertifizierung)?

Solo2-Schlüssel gehen jedenfalls nicht und die sind wohl eh EOL. Ich möchte gerne einen Schlüssel mit einer Open-Source-Firmware benutzen.

@nitrokey #nitrokey #agov #yubikey #schweiz #OpenSource #securitykey

Apr 02, 2025, 15:36 · · · 0 · 0

Resources

Developers

What is Mastodon?

qoto.org

More…

v3.5.19-qoto · Privacy policy