Follow

The Problem. I agree with most of the points in this article. Well-done writeup.

latacora.micro.blog/2019/07/16

· · Web · 1 · 5 · 4

@_xhr_

Note: I just found out, you can avoid pgp completely even if you want to talk to a yubikey.

* PKCS#11 is an software API to access smartcards.
* opensc implements that. and the article at undeadly.org/cgi?action=articl uses that.
* gnupg has its own way of accessing a smartcard, as far as i understood.
* i guess, you can also use libressl/openssl for public key crypto where the key is stored on the yubikey, using opensc. But i never tried it.
* see also: github.com/OpenSC/OpenSC/wiki

#libressl

@toogley Usually, I use PGP only for email security. I gave up on GPG and smartcards long ago. Either I am to stupid or it is to complicated :)

@_xhr_

GnuPG on smartcards is not very difficult. I guess you have to have good explanations for this to be true :D

Personally, I've used github.com/drduh/YubiKey-Guide . But also malcolmsparks.com/posts/yubike exits.

Just TOTP is left to configure for me.

Sign in to participate in the conversation
Mastodon

The original server operated by the Mastodon gGmbH non-profit