|
|
|
|
|
|
by solatic
181 days ago
|
|
|
> almost everyone I know quickly gets sick of touching the yubikey for every git remote operation and just generates their own local SSH key to use for git since doing so is not forbidden Yes, that's the exact problem at hand. If you generate your own local SSH key, the private key sits on the disk, and it can be stolen by malware (see article). I'm asking how people set up the controls such that only hardware-based keys are signed by the CA. |
|
|