sharkey
thoughts
Our great sponsors
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
sharkey
- Cryptojacking Attacks Continue To Target SSH Servers
-
How often should I rotate my SSH keys?
> Still, I'd really like to see an article about how you set that up, especially if it targets smaller enterprise customers.
https://github.com/square/sharkey
thoughts
-
A rough proposal for sum types in Go, from a Rust compiler engineer
Yeah I was a bit sloppy when I wrote my answer. With GraphQL you can mimick tagged unions by giving each branch an object type.
I actully wrote just few days ago about how cool it would be if TypeScript-like language too had tags:
https://github.com/Ciantic/thoughts/blob/master/2021/dynamic...
- Cryptojacking Attacks Continue To Target SSH Servers
-
How often should I rotate my SSH keys?
If you use GPG and YubiKey approach, you can create the keys in offline computer, store them to YubiKey, and make paper copy of the private key. Also you probably shouldn't have only single way to access the remote computer, I still intend to store password for root that I never use.
I wrote about my endeavour with this approach just few days ago [1].
[1]: https://github.com/Ciantic/thoughts/blob/master/2021/yubikey...
What are some alternatives?
caddy-ssh - Caddy-SSH is a general-purpose, extensible, modular, memory-safe SSH server built in Go [Moved to: https://github.com/kadeessh/kadeessh]
wal-g - Archival and Restoration for databases in the Cloud
secretive - Store SSH keys in the Secure Enclave
authorized_keys - Scripts to manage many-to-many SSH access
openssh-sk-winhello - A helper for OpenSSH to interact with FIDO2 and U2F security keys through native Windows Hello API
bless - Repository for BLESS, an SSH Certificate Authority that runs as a AWS Lambda function
cashier - A self-service CA for OpenSSH
sekey - Use Touch ID / Secure Enclave for SSH Authentication!