authorized_keys
thoughts
authorized_keys | thoughts | |
---|---|---|
1 | 3 | |
1 | 3 | |
- | - | |
0.0 | 0.0 | |
almost 2 years ago | over 1 year ago | |
Shell | ||
- | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
authorized_keys
-
How often should I rotate my SSH keys?
Definitely not appropriate for protecting Real Infrastructure, but for my handful of personal machines I put my authorized keys in a Google Doc and configure hosts to download it using `AuthorizedKeysCommand`.
I have a hardware-backed "doomsday key" to use if the Google Doc stops working.
Writeup and script at https://github.com/mmdriley/authorized_keys
thoughts
-
A rough proposal for sum types in Go, from a Rust compiler engineer
Yeah I was a bit sloppy when I wrote my answer. With GraphQL you can mimick tagged unions by giving each branch an object type.
I actully wrote just few days ago about how cool it would be if TypeScript-like language too had tags:
https://github.com/Ciantic/thoughts/blob/master/2021/dynamic...
- Cryptojacking Attacks Continue To Target SSH Servers
-
How often should I rotate my SSH keys?
If you use GPG and YubiKey approach, you can create the keys in offline computer, store them to YubiKey, and make paper copy of the private key. Also you probably shouldn't have only single way to access the remote computer, I still intend to store password for root that I never use.
I wrote about my endeavour with this approach just few days ago [1].
[1]: https://github.com/Ciantic/thoughts/blob/master/2021/yubikey...
What are some alternatives?
openssh-sk-winhello - A helper for OpenSSH to interact with FIDO2 and U2F security keys through native Windows Hello API
wal-g - Archival and Restoration for databases in the Cloud
secretive - Store SSH keys in the Secure Enclave
bless - Repository for BLESS, an SSH Certificate Authority that runs as a AWS Lambda function
cashier - A self-service CA for OpenSSH
sekey - Use Touch ID / Secure Enclave for SSH Authentication!