Stefan Tilkov · Jan 9, 2018 · 1:16 PM UTC

Stefan Tilkov

Stefan Tilkov @stilkov

9 Jan 2018

This seems very neat: Kryptonite, an iOS/Android authentication app that allows you to keep your SSH private key on your phone only krypt.co (via @n1ko_w1ll)

Paul Ingles · Jan 9, 2018 · 2:11 PM UTC

Paul Ingles @pingles

9 Jan 2018

I use my yubikey nano for the same- keep it in my wallet. also good as totp mfa device.

Stefan Tilkov · Jan 9, 2018 · 2:32 PM UTC

Stefan Tilkov @stilkov

9 Jan 2018

I considered that, but love the fact that I can use the device I always have with me anyway

Ted Leung · Jan 9, 2018 · 4:49 PM UTC

Ted Leung @twleung

9 Jan 2018

Might be more convenient, but putting the private key on the other side of network (wifi/bluetooth) etc seems like adding more opportunities for breaches.

Stefan Tilkov · Jan 9, 2018 · 6:38 PM UTC

Stefan Tilkov · Jan 9, 2018 · 6:38 PM UTC

Stefan Tilkov @stilkov

9 Jan 2018

Replying to @twleung @pingles @n1ko_w1ll

On the other hand, not putting the private key on your main computer’s permanent storage removes some

Jan 9, 2018 · 6:38 PM UTC

Paul Ingles · Jan 9, 2018 · 8:20 PM UTC

Paul Ingles @pingles

9 Jan 2018

Replying to @stilkov @twleung @n1ko_w1ll

i have to say i find the convenience of the yubikey fantastic for mfa: either through scripted automation or fido u2f w/ google, github etc. much quicker than with my phone.

Ted Leung · Jan 9, 2018 · 11:29 PM UTC

Ted Leung @twleung

9 Jan 2018

Replying to @stilkov @pingles @n1ko_w1ll

Agreed - was thinking more vs like a yubikey