You could get a hardware key (like a Yubikey) and authenticate with PIV or GPG.
Comment on How to harden against SSH brute-forcing?
StructureOfChaos@lemmynsfw.com 3 weeks agoRegarding SSH Keys, I was wondering how you keep your key safe and potentially usable from another client?
a_postmodern_hat@lemmy.world 3 weeks ago
gerowen@lemmy.world 3 weeks ago
Generate a unique key for each client or device. SSH keys identify devices, not people, so I do not recommend sharing the same key between two different devices.
StructureOfChaos@lemmynsfw.com 3 weeks ago
Well, you might have only 1 main client, but if that hardware fails and need to connect from a temporary client or after a fresh install you’re out of your own server…
callcc@lemmy.world 3 weeks ago
Be sure to use a passphrase
StructureOfChaos@lemmynsfw.com 3 weeks ago
Or very strong password