Just store your keys on the yubikey. Problem solved.
Or use a smart card profile and go that route.
Comment on NIST proposes barring some of the most nonsensical password rules
TBi@lemmy.world 1 month agoMy company blocked ssh keys in favour of password + 2FA. Honestly I don’t mind the 2FA since we use yubikeys, but wouldn’t ssh key + 2FA be better?
JasonDJ@lemmy.zip 1 month ago
jj4211@lemmy.world 1 month ago
All well and good when ssh activity is anchored in a human doing interactive stuff, but not as helpful when there’s a lot of headless automation that has to get from point a to point b.
TBi@lemmy.world 1 month ago
Yep. All the headless automation broke…