Naty · @eclecticpassions
14 followers · 107 posts · Server fosstodon.org

Recently added quite a few finger-sized gadgets!
- Kingston DataTraveler Exodia 64GB
- Orico USB-C female to USB-A male
- PortaPow Data Blocker Pure - Prevents juice jacking
- Sandisk Ultra Luxe 64GB
- Kingston Ironkey Locker+ 50 32GB
- Yubico Security Key USB C NFC

Really happy with the performance of each product so far.

#usbflashdrive #KingstonIronkeyLocker50 #IronKey #yubico #yubikeys #Orico #portapow #juicejacking #sandisk #flashdrives #securitykeys #datablocker #usbcondom #newtoys

Last updated 1 year ago

Gregor Longariva · @anfalas
53 followers · 610 posts · Server social.tchncs.de

Wir meinen es ernst, mit dem Absichern unserer kritischen Systeme.
Ein Teil der über 4k die wir demnächst verteilen

#yubikeys #mfa #fau #rrze

Last updated 1 year ago

Karl Voit :emacs: :orgmode: · @publicvoit
2143 followers · 16211 posts · Server graz.social

@frank @keno3003 Du meinst Resident Keys: duo.com/labs/tech-notes/reside

AFAIK brauchst du die nur für aber nicht für Standard . Mein hat 50 slots für Resident Keys, manche nur 25.

Du kannst aber unendlich viele FIDO2 Services mit einem Token betreiben. Noch ein Vorteil von FIDO2 HW-Token.

HTH

#passkeys #fido2 #solokeys #yubikeys

Last updated 1 year ago

Naty · @eclecticpassions
10 followers · 80 posts · Server fosstodon.org

So apparently, according to Yubico's CS, they accidentally placed a "normal", no-barcode Security Key into an "Enterprise Edition" packaging and told me not worry about it. They advised me to reset the key with ykman if I was still worried.

#yubikey #yubikeys #yubico #onlinesecurity #cybersecurity #hardwarekey #securitykeys #fido2

Last updated 1 year ago

Naty · @eclecticpassions
7 followers · 58 posts · Server fosstodon.org

They're here! Not sure why I got the Enterprise Edition though... Seems the only difference is a bar code on the backside compared to having nothing on the normal version.

#yubikey #yubikeys #yubico #cybersecurity #onlinesecurity #securitykeys #2FAkey #2fa

Last updated 1 year ago

Julien Palard · @mdk
199 followers · 1773 posts · Server mamot.fr

@arthurzenika Deux , USB A et USB C (et ça fait backup d'en avoir deux).

Avec je fais du webauthn (ça marche presque partout sauf chez ma banque ) et agent (mais pas de , que je fais « à l'ancienne »).

Pas de TOTP : (enfin plus de TOTP, j'en ai fait il y a longtemps). Avant j'avais Android, donc je n'avais aucune confiance en mon téléphone, donc j'ai arrêté le , et maintenant j'utilise , ça va mieux niveau confiance, mais pas assez pour faire du TOTP.

#yubikeys #lol #ssh #pgp #totp #mobian

Last updated 1 year ago

Naty · @eclecticpassions
5 followers · 49 posts · Server fosstodon.org

For actually using the hardware key on macOS login (not Apple ID), you need the more expensive @yubico 5 series keys as they support PIV. So don't buy the wrong key! If in doubt, and budget allows, get the 5 series.

And another common service to use 2fa hardware keys is @bitwarden. You need Bitwarden Premium to use it, not the free tier.

#2fa #2FAkey #yubikey #yubikeys #yubico #onlinesecurity #macos #hardwarekey #bitwarden

Last updated 1 year ago

Naty · @eclecticpassions
4 followers · 42 posts · Server fosstodon.org

For those who want to use hardware security keys to secure your Apple ID, make sure you fulfil these requirements: all your devices need to support iOS 16.3, iPadOS 16.3, macOS Ventura 13.2, or later. They also ask you to register at least two hardware keys when you activate hardware security keys on your Apple ID.

support.apple.com/HT213154

#fido2 #FIDO2Protocol #2fa #2FAkey #yubikey #yubikeys #yubico #onlinesecurity #appleid #hardwarekey

Last updated 1 year ago

Naty · @eclecticpassions
4 followers · 38 posts · Server fosstodon.org

Gonna be buying 2 hardware keys to up my online security game. Chose the @yubico more budget friendly, Security Key series—one USB-C, one USB-A. I also just read that Firefox 114 (June 2023) on macOS and AWS now supports FIDO2. Hope the setup is smooth sailing! Been wanting to use a hardware key for ages...

yubico.com/blog/amazon-web-ser

yubico.com/blog/firefox-suppor

Poll (select all that applies)

#fido2 #FIDO2Protocol #2fa #2FAkey #yubikey #yubikeys #yubico #onlinesecurity #firefox #macos

Last updated 1 year ago

ChiefGyk3D · @chiefgyk3d
1466 followers · 1420 posts · Server social.chiefgyk3d.com

@Efani Now for my least favorite part of making new accounts. Grabbing ALL of my @yubico to add my TOTP of FIDO/WebAuthn for my 2FA for security. Well at least I have plenty of backups. Ones with stickers are for work

#yubikeys #yubikey #cybersecurity #InfoSec #yubicoambassador #Privacy #simswap #cellphone

Last updated 1 year ago

JP :fedora: :pine64: :mojeek: · @jppelt
103 followers · 896 posts · Server fosstodon.org

@chris hope springs eternal. My big win of finally getting rid of authy, increased prevalence of sites that allow , coming back alive, cool distros like , companies like , and search engines likes are so cool and make me happy.

@Solus @system76 @Mojeek @yubico

#yubikeys #solus #Bohdi #system76 #mojeek

Last updated 1 year ago

TobTobXX · @tobtobxx
179 followers · 2768 posts · Server fosstodon.org

Oooooh yeah. I wanted to set up again, but just saw a guide to do FDE with .

Yess!!!

#fde #yubikeys

Last updated 1 year ago

xuf :geraffel: · @xuf
91 followers · 539 posts · Server geraffel.social

A research found a way to recover the password from memory dumps, This affects all versions before 2.54, which has not been released.

The article suggests to use to store the password because this keeps the password out of the system memory.

I'm quite sure this is wrong. You can even see the password entered by the . I this case the yubikey is acting like a keyboard and typing a (long random) password for you.

malwarebytes.com/blog/news/202

#keepass #yubikeys #Yubikey #dfir

Last updated 1 year ago

TimedIn :verified: · @timedin
22 followers · 197 posts · Server mastodontech.de

@mlnf Aber unterwegs Überweisen ist schon auch notwendig.

Würden Banken mal gängige 2FA Methoden wie bzw. akzeptieren...

#webauth #yubikeys

Last updated 1 year ago

Adam · @adam
354 followers · 822 posts · Server hax0rbana.social

How is it different from other hardware security thingies you may know?

don't store passwords and are not open source. They do , which does not.

store 0 to 16 passwords (depending on the model). Signet can store hundreds of passwords. Nitrokeys do things like email encryption and (depending on the model), which Signet does not.

The Model T does not store passwords. It does FIDO2 and holds your digital currencies.

#yubikeys #2fa #signet #nitrokeys #fido2 #trezor

Last updated 2 years ago

Ezlin Rye · @ezlin
50 followers · 284 posts · Server etheirys.masto.host

I was already slowly moving away from after the previous info about their breach. Yet the latest update is such a complete nightmare that I rushed through the process of deleting / updating everything that was associated with it.

FML what a dull way to spend an entire day.

On the bright side, I learned that supports and I'm just tickled that I get to use it here.

#lastpass #Mastodon #yubico #yubikeys

Last updated 2 years ago

Royce Williams · @tychotithonus
1284 followers · 881 posts · Server infosec.exchange

Today the Yubico Blog announced general (consumer) availability of their new Security Key by Yubico.

yubico.com/blog/expanded-secur

This is now the second set of keys to divert from the previous "black = full-featured YubiKey 5 Series" color scheme (the first being the YubiKey Bio FIDO Edition), these keys are visually very similar to the full YubiKey 5, but bear the word "FIDO" on the back to differentiate.

I think the YubiEnterprise-issued keys may be the only ones that will also bear a serial number?

#yubico #yubikeys

Last updated 2 years ago

Jeff Moss · @thedarktangent
7047 followers · 509 posts · Server defcon.social

Just want to give a positive shout out to CAC SSH, the fork of Putty that gives you smart card support and works with . Good stuff!

github.com/NoMoreFood/putty-ca

#putty #yubikeys

Last updated 2 years ago

throAU · @throAU
6 followers · 209 posts · Server ioc.exchange

so, question for the security peeps - #365 break glass account: or not? My gut feeling is to secure with multiple , held by senior management but have seen info online suggesting that MFA is disabled and just rely on a secure password and obscure login name. Thoughts?

#mfa #yubikeys

Last updated 2 years ago

mystygage · @mystygage
13 followers · 17 posts · Server mastodon.social

Just set up my for my Apple account. Good onboarding process with the need for at least two separate keys to enable this feature

#yubikeys

Last updated 2 years ago