Tootfinder

Opt-in global Mastodon full text search. Join the index!

@x_cli@infosec.exchange
2026-02-24 08:16:25

With Bitwarden, you can store your SSH keys and use the desktop app to expose a SSH agent socket.
Some SSH servers have a MaxAuthTries configured with a low value.
If you use a SSH agent loaded with more keys that the MaxAuthTries value, and the required key is not in the MaxAuthTries first tried keys, you get an authentication error.
In CLI, you just pop a new SSH agent, load it with the "only key you need" and off you go.
With Bitwarden, you cannot do that (I …

@vyskocilm@witter.cz
2026-01-29 20:04:41

TIL: you can use age and ssh keys to encrypt/decrypt files
> RECIPIENT can be an age public key generated by age-keygen ("age1...")
or an SSH public key ("ssh-ed25519 AAAA...", "ssh-rsa AAAA...").
#age #security

@michabbb@social.vivaldi.net
2026-03-01 06:40:25

🖥️ Less relevant for server environments using SSH keys – primarily affects desktop users
heise.de/en/news/sudo-rs-shows

@fanf@mendeddrum.org
2026-01-24 12:42:03

from my link log —
SSH has no Host header: virtual hosting based on user public keys.
blog.exe.dev/ssh-host-header
saved 2026-01-22

@rollin_rob@social.linux.pizza
2026-01-09 10:52:14

Today I learned that you can restrict the permissions of an SSH key to just one single command. This is particularly useful if you are forced to use a passwordless key!
ssh.com/academy/ssh/authorized

Detailed Description of How to Configure Authorized Keys for OpenSSH
In OpenSSH, authorized keys are configured separately for each user, typically in a file called authorized_keys.

@x_cli@infosec.exchange
2025-12-22 13:35:16

Many #Terraform providers using SSH do not check the SSH host key... they just run with ssh.InsecureIgnoreHostKey...
And to be honest, it is partly the fault of the SSH standard library which makes it super easy to ignore the host key and does not provide any useful builtin key verification function. People are lazy. ssh.FixedHostKey is niche.
So I implemented a small library to v…

sshhostkey
Provides a SSH HostKeyCallback builder to check keys with known_hosts files, entries or SSHFP (over classic DNS, DoT and DoH)

@gwire@mastodon.social
2025-12-30 11:56:34

Ugh, my personal git server uses a pre-2022 version of sshd - and now, when I do anything, I get a warning that I'm not using post-quantum keys.
We should be moving to PQ methods, yes, but I don't think anyone will convince me that mass "store now, decrypt later" quantum attacks will ever really be a thing - the opportunity cost will always be too high.
This is a VPN-advert level of unnecessary caution.
(You can set "LogLevel ERROR" in an ssh_con…

@gse@norden.social
2026-01-07 05:12:13

Guten Morgen ;D
Hab meinen freien Tag,. aber sitze hier mit grossen Schmerzen ;( Seis drum ..
#frage Kennt jemand einen SSH-Clienten, der bei Benutzung von SSH-Keys Hilfestellung gibt ?
Ich will nicht hören, das SSH-Keys sehr leicht sind, das man auch die Console nutzen kann.