sharkey
authorized_keys
Our great sponsors
sharkey | authorized_keys | |
---|---|---|
2 | 1 | |
391 | 1 | |
0.0% | - | |
5.4 | 0.0 | |
8 months ago | almost 2 years ago | |
Go | Shell | |
Apache License 2.0 | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
sharkey
- Cryptojacking Attacks Continue To Target SSH Servers
-
How often should I rotate my SSH keys?
> Still, I'd really like to see an article about how you set that up, especially if it targets smaller enterprise customers.
https://github.com/square/sharkey
authorized_keys
-
How often should I rotate my SSH keys?
Definitely not appropriate for protecting Real Infrastructure, but for my handful of personal machines I put my authorized keys in a Google Doc and configure hosts to download it using `AuthorizedKeysCommand`.
I have a hardware-backed "doomsday key" to use if the Google Doc stops working.
Writeup and script at https://github.com/mmdriley/authorized_keys
What are some alternatives?
caddy-ssh - Caddy-SSH is a general-purpose, extensible, modular, memory-safe SSH server built in Go [Moved to: https://github.com/kadeessh/kadeessh]
openssh-sk-winhello - A helper for OpenSSH to interact with FIDO2 and U2F security keys through native Windows Hello API
secretive - Store SSH keys in the Secure Enclave
bless - Repository for BLESS, an SSH Certificate Authority that runs as a AWS Lambda function
thoughts - Just my public thoughts, think of it like a blog I never update
cashier - A self-service CA for OpenSSH
sekey - Use Touch ID / Secure Enclave for SSH Authentication!
stateless-workstation-config - This is how I configure a fresh Ubuntu installation for serving me as a workstation.
certificates - 🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.