Finally got my solokey V2s. I'm pretty happy with it, but I did find 1 issue with it. It seems like, if I connect a key to an account using my computer, my phone will not be able to connect to it using NFC?

I can still connect to it using my USB-A to USB-C adapter, but I was wondering if there was something else I could do.

#u2f #SoloKeys #SolokeyV2 #Solokey

Got SSH working with the #Solokey !

Note: update to the newest #OpenSSH version and set a PIN first.

Good guide -
https://blog.frehi.be/2022/08/04/using-the-solo-v2-fido2-security-key/

PGP appears to work through PivAgent - https://smlx.github.io/piv-agent/docs/gpg-walkthrough/
Although my piv-agent cannot find the #Solokey on OSX (ideas?..).

And keep an eye out on @nitrokey Opcard-rs for #OpenPGP implementation - https://github.com/Nitrokey/opcard-rs

Nach viel und lang überlegen bin ich langsam aber sicher bereit mir security keys zuzulegen. Nur welche? Solokey, nitrokey, yubikey, winkeo. Am einfachsten/sinnvollsten wäre wohl ein yubikey + zusätzlichen key als backup 🤔 #security #linux #securitykey #nitrokey #solokey #yubikey #winkeo #neowavefr

Finally the #solokeys have arrived.

They are nice, but why is the LED only on one side of the key?

They wrote:
> Reversible connector for both USB-A and USB-C. Solo V2 will be providing the first ever reversible USB-A connector. This will enable inserting the key into a USB Port and being able to decide what side you want to face up. This fixes the problem of having a key be oriented with the LED light not facing the operator.

https://www.indiegogo.com/projects/solo-v2-safety-net-against-phishing

#solokey #fido2 #U2F

Looking for an alternative to #yuibkey. Something with the same #fido, piv and #pgp functionalities.

So I came across something called #Trussed which aims to provide a FOSS alternative to the previously used #JavaCard. And it seems to already have applets (or equivalent) for all the features I would like to see.

Has anyone used any Trussed devices, like the #solokey #solo2 or @nitrokey 3? Would anyone be able to recommend a specific device over another, or does the hw not make much difference?

@vmstan I ordered a #SoloKey a month or so ago. It's an Open Source key. Still waiting for it to arrive. Can't wait to try it out.

#MFA options besides #Yubico ? I came across one that was opensource and such but I can’t recall the name. It wasn’t #solokey that’s for sure. I need for personal and #nfc is a plus - halp?

I am *finally getting* my SoloKeys I paid for like... I forgot when 😂

#yubikey #security #solokey #hardwarekey #indiegogo

Ich bin gerade dabei mich mit #Yubikey und Alternativen einzulesen. Als Alternative wurde u.a. #Solokey angegeben, aber mir stellt sich die Frage nach dem anschauen der eingebundenen Dienste ob so was vertrauen erweckt?! Naja soll jeder für sich entscheiden.

So I ordered a #solokey a while ago, it finally arrived...the same day the #yubikey I got on a Cloudflare promo arrived. The Yubikey does seem faster (I had a NEO before, but wanted USB-C and NFC so expected it to be good).

Now I have 5 hardware keys. Kinda a pain to set up and keep track of but I guess that's fine?

What about 2FA with mastodon, e.g. social.linux.pizza, by using open source #SoloKey ? https://docs.solokeys.io/

Now, folks. Which #2fa #Fido2 #u2f #security #key do you prefer, and why? #NitroKey, #OnlyKey, #SoloKey, #YubiKey or something else entirely?

I'm thinking about a hardware token for 2FA like a #Yubikey or any #OpenSource alternative, so I'm curious of how much use it would be for me in the longer run.
The token should support #NFC an USB-A in order for me to be able to use it with my devices.
I take it from their website that #Solokey would not be compatible with my Huawei #P20pro, which is a show-stopper.😟

Hey Fedi, any experience or opinion on OnlyKeys or SoloKeys. I’m looking for a hardware key to harden logins.

Mainly OpenSSH, Linux/BSD/macOS, and password manager.

I might try unlocking encrypted volumes, but it’s not a necessary feature.

#2fa #solokey #onlykey #hardwarekey

@nick @torproject @briar
My bad- I haven't had my coffee yet and misunderstood.

As I still wake up, speaking from a pinephone user perspective:::
- A fully #encrypted #filesystem, with optional support for hardware key (like #solokey, or #nitrokey) #decryption
++Not sure about hw key, but encrypted fs is relatively easy on most Linux distros
- NO #Fingerprint Scanner or #Biometrics at all
++#pinephone doesn't have that at all
- #NFC that can only be toggled on temporarily, and automatically shuts off after X amount of time
++Probably a feature to be released in the near future
- #Bluetooth 5+ with #A2DP; #AptX and #BLE with a more security focused method of #authentication
++From the wiki "Bluetooth: 4.0, A2DP"; could probably swap it out though.
- All internet connections routed through @torproject (or something similar), with a #killswitch if the connection is dropped
++Maybe configure a distro to do so? I know there's various killswitches on the back.
- Privacy focused #browser with something like #SSL Everywhere; #WebRTC and JS disabled by default, with easy toggle for "trusted" websites, which would allow JS and Video etc
++Never tried this specific setup myself-ill have to give it a go.
- #Decentralized messaging; voice chat; video conferencing; forums and blogs, like where #Briar is being taken by @briar (though the voice; video and other creature comforts are as yet unavailable)
++I used #fractal as well as ssh into my personal communication server
- No closed source Modem/Wifi/Bluetooth binary blobs
++Iirc, pinephones modem is open.
- Securely Containerized SMS/MMS
++Sms/mms is still unstable but working
- Password Manager with support for #OTP; #TOTP and #Fido2
++I keep being referred to bitwarden. Not sure if this applies.
- #GPS #Spoofing by default
++Not aware of any mobile distro doing this be default
=======≠===≠=≠================≠===≠===≠==
I would like to see more Linux phone options/development out there in the wild...

For those who have U2F/FIDO #security keys (#Yubikey, #SoloKey, #Nitrokey, etc), have you registered multiple keys with a single account?

I guess the motivation would be just in case you lose one key, you have a backup. But this also seems to increase your attack surface.

Thoughts?

#cybersecurity #2fa

@rob @maxeddy @freakazoid thanks for all the suggestions!

Because I want to use it on 'old' computers *and* smartphones, but I don't want to carry a dongle. So even thou I've got USB-C on my primairy devices, I still want a USB-A #SecurityKey (I've been reading up jargon 😊) but with NFC for mobile devices.

That makes my current choice between #SoloKey & #YubiKey 🤔

Yubi is the industry standard so will have the most support, but Solo is completely open source and has upgradable firmware 😩

#InfoSec #BirthdayPresent

I'd like to get a hardware authentication device (aka YubiKey) for my birthday, which would be the most secure and the most #OpenSource?

Would that be the #SoloKey? Any other suggestions? The have to ship to Europe (Netherlands specifically) 🦾😎

Я не знаю, поведение это конкретно #SoloKey или вообще это нормально для всех, но нажатие на кнопку подтверждения позволяет сайту читать данные на 3 секунды.

Выглядит скорее неприятно, чем опасно.

Как проверить:

1. Зайти на любой сайт, где можно использовать U2F. Например https://u2f.bin.coffee/
2. Зарегать ключ
3. Нажать кнопку на ключе и только потом нажать на сайте кнопку запроса верификации

Тестовый сайт сразу вернёт данные, без необходимости нажимать кнопку.

Т.к. время этого всего 3 секунды, не считаю проблему серьёзной.

Проверял на #Firefox