On 26-08-2014 05:00, Maurice McCarthy wrote:
> Yubikey 2.2+ static passwords went up to 38 characters and changeable by the
user. Yubikey Neo is not changeable. Later this year there is supposed to be a
public release of the NEO with U2F, Universal 2nd Factor including wireless
support. It has been
On Tue, Aug 26, 2014 at 12:03:52AM + or thereabouts, Stuart Henderson wrote:
> On 2014-08-23, Zach Leslie wrote:
> > All yubikeys have the two slots, to my knowledge, which can be set either
> > static or otp.
>
> Yes 2 slots - the gui and cli programming tools are in packages.
> Not sure abo
On 2014-08-23, Zach Leslie wrote:
> All yubikeys have the two slots, to my knowledge, which can be set either
> static or otp.
Yes 2 slots - the gui and cli programming tools are in packages.
Not sure about newer ones, but older yubikeys are quite limited in
maximum static password length (16 cha
On August 23, 2014 6:26:04 PM CEST, "Артур Истомин" wrote:
>On Sat, Aug 23, 2014 at 02:09:20PM +0200, Alexander Hall wrote:
>>
>>
>> On August 23, 2014 4:33:55 AM CEST, "Артур Истомин"
> wrote:
>> >On Fri, Aug 22, 2014 at 04:03:59PM -0700, Zach Leslie wrote:
>> >> > However, I don't know how it
> > >Are there any YubiKey-like devices that can contain many static
> > >password, not one like YubiKey?
> >
> > Not sure it helps, but mine contains two...
>
> It helps! I need one for login password and second for firefox's password
> manager. Which model do you use?
All yubikeys have the two s
On Sat, Aug 23, 2014 at 02:09:20PM +0200, Alexander Hall wrote:
>
>
> On August 23, 2014 4:33:55 AM CEST, "Артур Истомин"
> wrote:
> >On Fri, Aug 22, 2014 at 04:03:59PM -0700, Zach Leslie wrote:
> >> > However, I don't know how it is seen by the system and if it would
> >> > show up as a drive.
On August 23, 2014 4:33:55 AM CEST, "Артур Истомин" wrote:
>On Fri, Aug 22, 2014 at 04:03:59PM -0700, Zach Leslie wrote:
>> > However, I don't know how it is seen by the system and if it would
>> > show up as a drive. Anyone in here is using a smart card to decrypt
>> > volumes at boot?
>>
>> You
On 2014-08-22, Julien Meister wrote:
> Thank you very much.
>
> So there is really really no way for the system to retrieve the key stored
> on the smart card (using GnuPG) at boot in order to decrypt
> the volumes?
Correct, you can't run application programs like GnuPG before the
system has boot
On Fri, Aug 22, 2014 at 04:03:59PM -0700, Zach Leslie wrote:
> > However, I don't know how it is seen by the system and if it would
> > show up as a drive. Anyone in here is using a smart card to decrypt
> > volumes at boot?
>
> You could use a YubiKey with a static long password to unlock the boo
> However, I don't know how it is seen by the system and if it would
> show up as a drive. Anyone in here is using a smart card to decrypt
> volumes at boot?
You could use a YubiKey with a static long password to unlock the boot
volume.
--
Zach
[demime 1.01d removed an attachment of type applica
On Fri, Aug 22, 2014 at 08:01:27PM +0200, Julien Meister wrote:
> So there is really really no way for the system to retrieve the key stored
> on the smart card (using GnuPG) at boot in order to decrypt
> the volumes?
The boot loaders and the kernel only support softraid(4) keydisks
created as par
Thank you very much.
So there is really really no way for the system to retrieve the key stored
on the smart card (using GnuPG) at boot in order to decrypt
the volumes?
I haven't bought the smartcard yet because I wanted to see first if it
was usefull. The one I was planning to buy was en OpenPGP
On Wed, Aug 20, 2014 at 18:11, Julien Meister wrote:
> Hello everbody,
>
> I'm from FreeBSD and I wanted to give OpenBSD a (new) try.
>
> I would like to have a full disk encryption (as I've seen it's possible now
> with OpenBSD 5.5) and use a smart card to decrypt the volumes at
> boot, instead
Hello everbody,
I'm from FreeBSD and I wanted to give OpenBSD a (new) try.
I would like to have a full disk encryption (as I've seen it's possible now
with OpenBSD 5.5) and use a smart card to decrypt the volumes at
boot, instead of having to type a password, which seems "less secure".
I read a
14 matches
Mail list logo