Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
valenciarose
on Aug 4, 2018
|
parent
|
context
|
favorite
| on:
The default OpenSSH key encryption is worse than p...
Use SSH keys generated and stored on some sort of PKCS11/PIV hardware device. It’s relatively easy to do now. Don’t trust a general purpose computer to keep your keys secure.
Better yet, use U2F where you have control of how you are authenticated.
Consider applying for YC's Spring batch! Applications are open till Feb 11.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
Better yet, use U2F where you have control of how you are authenticated.