Hacker News new | ask | show | jobs
by StavrosK 2179 days ago
I think those are pretty much the only ones, the Yubikey in GPG smartcard mode was always too fiddly for me and interfered with my agent in other ways, but this is trivial to set up and use.

Also, a big draw of the USB SSH key for me is that I can plug it in to other computers and connect to my servers, which smartcard mode didn't do, so that was a big drawback for me.
2 comments
simias 2179 days ago
Yeah fiddly is the right word, although once the painful initial configuration is done it generally works fairly well in my experience.

Being able to easily migrate to a new computer sounds like a great feature though.

link
RL_Quine 2179 days ago
You can't do that easily, you still need the public key file on disk.
link
StavrosK 2179 days ago
Not with resident key mode.
link
RL_Quine 2178 days ago
Sort of. The keys have limited space on them (20 for some Yubikey models) for resident keys. You wouldn't want to be always using them for everything.
link
StavrosK 2178 days ago
That's why I'm excited about SoloKeys v2, they (will) come with space for thousands of resident keys.
link