4

Yubikey: Worth it?
I'm a college student with way too many logins and offend reusing passwords. I also do password semantics research at the institution and know how useless they are.

Comments
  • 0
    Lemme just drop a pin because I've had their sight book marked for a week or so now.

    Which model are you looking at?
  • 2
    Yes. Do it, and do the research on how to make a proper PGP keychain. I have one and I use it to encrypt my password database (GNU pass)

    Definitely worth the $40 if it helps you take control of your credentials.
  • 2
    Yes.

    But it won't directly replace a password manager.

    If you want to unlock the password manager with the Yubikey either save parts of your master password on the key.
    Better use a password manager which can be unlocked with PGP/GPG (e.g. pass, gopass or - if you want a graphical interface - QTpass).

    My current usage of the Yubikey:
    - Computer login (PIN + Yubikey; integrated smartcard functionality)
    - SSH (with the GPG application; SSH with GPG takes some time to setup)
    - Second factor for Github, Gitlab, Nextcloud, Google account with U2F (one of the most useful features)
    - Second factor for server access with HOTP.
  • 0
    @tokumei
    >GNU pass
    Hooray another gpg thing to try!
Add Comment