New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
OFFICIAL B-L-A-C-K-F-R-I-D-A-Y THREAD -- COMMUNITY ENDORSED! Take a peek! (RackNerd's Black Friday)
This discussion has been closed.
Comments
I only use SSH keys for auth, pass auth is 👎
He’s on strike
Then what can you do if you want to login from a different device?
Put all the keys in authed keys?
Awesome
My friend was also having ssh keys and ssh restricted to his static ip, but he still got pwned
And another sad news
I use termius, like 1password but for SSH. Everything is encrypted and you need the master password to decrypt it, so I trust them.
Also their pro plan is free with github student pack so
That won’t make it hack proof anyway
What seems to be that ?
Well nothing is hack proof
Just needs an exploit, social engineering or lots and lots of time
Interesting. I'm on windows and use KeePass (Password Manager)+ Keeagent plugin + Putty to SSH. It's really fast to login!
For the rest of my passwords I use my selfhosted vaultwarden
Agreed
I got call from repair shop, and was told my laptop parts were not possible to arrange because of being too old parts are not available in market or the warehouse (junk parts) and is marked as no fix.
I tried using self hosted vaults but the accessibility and ease of use for solutions like Termius or 1Password is just hard to beat
1password is a solid product. just wish they had custom urls to filter the passwords that show up for my subdomains. they just do it on based on base url T.T. Meaning 10+ passwords show up for my one subdomain out of 10 for example.
Well that’s sad
Yeah, it's a bit annoying but I don't really mind, just need to add the subdomain once and leave it
Does vaultwarden have anything like keeagent out of the box?
w/ bitwarden you can choose the URI detection method https://i.imgur.com/li5hjx4.png
edit: bitwarden da original open source one. vaultwarden also open source = lighter weight implementation
not that i know of :[ will have to do DD
You trust the termus
That's the key point.
How can you be sure they are safe?
B-L-A-C-K-F-R-I-D-A-Y
Everything is end to end encrypted, the keys are only decrypted client side. I tested this with a network sniffer once, and indeed the only data that was being sent was encrypted
I-S-O-V-E-R
Yea
that made me inactive and not possible to remain in this party...
I was looking in 1Password settings to see if they had any option for wildcard domains and came across this:
https://developer.1password.com/docs/ssh/agent/
Basically does what Termius does for me, although they don't have a built-in SSH client for mobile which I need.
Sounds promising, but I still don't want to use a third party software.
I monitor the login history and workloads, got hacked once.
If you're running your own servers, you could easily run Bitwarden/Vaultwarden. I've Vaultwarden installed on a free Google Cloud instance
Oof, do you know how you got hacked?
It was a free Oracle server, with default username 'ubuntu', default port 22, and a simple password, so I'm not worried about others.