Hacker News new | ask | show | jobs
by praash 185 days ago
I stopped worrying after I began protecting all keys with a passphrase.
3 comments
doug713705 185 days ago
Then the access of your git repos is protected by a single factor, the private key, since the private key is already in the wild.

Copying a private key on a removable storage or to another device than the device that generated it is never a good idea.

link
zikduruqe 185 days ago
I protect mine with GPG for SSH authentication.
link
Ferret7446 182 days ago
The only use of the passphrase is to give you time to rotate out the key after it's been compromised. It's not meant to be your main line of defense
link