undefined | Better HN

0 pointstialaramex4y ago0 comments

> Even using U2F for SSH keeps the same restrictions

Er, what? The SSH keys are being generated the same way keys for web sites are under FIDO, which is to say they're random - your physical device has no idea how many keys you have, it couldn't mandate that there's only one key if it tried. It only knows how to tell if these are keys it made (otherwise presumably a different FIDO authenticator made them) and if so use them to sign you in once somebody touches the contact.

0 comments

captn3m04y ago

That makes sense. I need to try U2F for SSH more thoroughly I guess.

j / k navigate · click thread line to collapse

0 pointstialaramex4y ago0 comments

> Even using U2F for SSH keeps the same restrictions

0 comments

captn3m04y ago

That makes sense. I need to try U2F for SSH more thoroughly I guess.

j / k navigate · click thread line to collapse