Commit Graph

133 Commits

Author SHA1 Message Date
Andrew Morgan f36447a85b
State that `set-touch` used to be `touch` 2019-08-02 18:24:43 +01:00
drduh 6482036e17 Bump debian version and fix some grammar. 2019-07-07 19:45:22 -07:00
Matthew Riley fddefb5245
Fix 'Require Touch' syntax
The syntax to change Yubikey touch configurations has changed. Updating this accordingly.
2019-07-04 12:39:33 -04:00
drduh 48bf452e4b Feature simpler multiple key workaround 2019-06-09 12:31:58 -07:00
drduh 09f3822a19 Link to multiple keys discussions. Fix #19. Fix #112. 2019-06-09 11:42:00 -07:00
Jakob Knutsen 1544d14689 Fix link to supply chain attacks 2019-06-09 12:11:52 +02:00
drduh b745f1d90e Add card reset steps, clean up formatting. 2019-06-02 10:32:16 -07:00
Benjamin BERNARD 46601736f6 Adding link to summary for 'Using multiple YubiKey with same GPG keys' section 2019-05-26 19:05:43 +02:00
Benjamin BERNARD b101259a27 Multiple Yubikey with same GPG Keys, serial number issue, GnuPG workaround to switch to another key 2019-05-26 19:03:41 +02:00
drduh 1b9fc107c0 Fix date string format 2019-05-25 23:55:29 -07:00
Carl Dong 4552bb45e1
Correct date invocation
The correct syntax is `date +FORMAT`
2019-05-26 02:22:04 -04:00
drduh 04bef18b0c Add section on key rotation to fix #101 2019-05-25 12:20:07 -07:00
drduh 7661d79b51 Mention Thunderbird, clean up agent forwarding. Fix #85. 2019-05-19 12:35:02 -07:00
drduh f8d6dec18f Better openbsd backup instructions, slimmer TOC 2019-05-18 18:53:42 -07:00
drduh bf05e0e7c4 Better backup and testing instructions 2019-05-18 17:47:13 -07:00
drduh a6bc874713 Increment debian image version 2019-04-30 12:03:19 -07:00
Simon A c5e1d96d84 fix(link): update links to latest version (old ones 404) 2019-04-25 17:53:55 +02:00
David Kane 5007059085
Fix link anchor issue
fix 'Save public key for identity file configuration' markdown link
fix 'Remote Machines (agent forwarding)' markdown link
2019-04-14 19:48:18 +01:00
Philipp Eckel 13c8fcf647
no need to support the monopoly 2019-03-19 00:30:03 +01:00
nixbitcoin 6d4035252a
Add Verify Yubikey section 2019-03-07 14:02:05 +01:00
Adam Uhlíř 3ed8f56557
Add hint for setting up gpg-agent socket
On my system (Linux Mint) `gpgconf --list-dirs agent-ssh-socket` does return all dirs and not only the one for agent-ssh-socket hence `ssh-add -L` was failing. This is a hint for other people to troubleshoot this behaviour.
2019-02-19 10:33:18 -08:00
Zachary Adam Kaplan e4cb903ef4
debian iso has change from 9.6.0 -> 9.7.0 2019-02-15 16:23:29 -08:00
drduh e05dc4b5bd Update license and formatting 2019-02-06 20:25:04 -08:00
Michael Käufl 457e22d473
Move install instructions to the top
Section `Creating keys` ends with `Disable networking for the
remainder of the setup.`.  All instructions that require a network
should be before this sentence.
2019-02-06 13:17:57 +01:00
drduh 303cb25d4d Update license year, style and grammar 2019-02-02 21:25:21 -08:00
drduh 3f4480db25 Update openbsd instructions 2019-02-02 21:08:39 -08:00
drduh 381088ba79
Merge pull request #92 from tacaswell/doc_arch_install
DOC: add install instructions for Arch linux and RHEL
2019-02-03 03:57:33 +00:00
Thomas A Caswell 7dbc05977e
DOC: update for packages to install on RHEL 2019-02-02 22:15:41 -05:00
Thomas A Caswell 9e7a3225ae
DOC: add install instructions for Arch linux 2019-02-02 22:11:09 -05:00
Wael M. Nasreddine 7115f9a385
Master key should have Certify-capability only! 2019-02-02 09:48:59 -08:00
Michael bba51c10cc
Fix typo
IdentityFiles can be passed to ssh via `-i`, not `-l`.
The next paragraph mentions the correct argument.

ref commit 52c8324fa2,
part of PR drduh/YubiKey-Guide#65
2019-01-20 18:48:59 +00:00
drduh 8ea5900d4e Style and console formatting, tips for multiple key use 2019-01-17 22:13:24 -08:00
wheest ee71716ed7 Added pull request suggestions 2019-01-12 17:05:21 +00:00
Wheest c28b33372c Moved Agent Forwarding section to before the WSL one 2019-01-07 22:00:27 +00:00
Wheest b44f6131ef Further amendments to Agent Forwarding 2019-01-07 21:58:14 +00:00
Wheest 7eed0ccef8 Improvements to Agent Forwarding section, following feedback in:
https://github.com/drduh/YubiKey-Guide/issues/85
2019-01-07 21:38:46 +00:00
drduh 3a872d40fe Fix keyserver command order to fix #86 2019-01-06 17:47:10 -08:00
Dan Cundiff 8f724a4df5
Add addition note about red hokey output 2019-01-06 19:35:03 -06:00
drduh 19b1297c22
Merge pull request #84 from hughobrien/mention-tmpfs
describe tmpfs clearing rather than init system (debian uses tmpfs)
2018-12-30 02:35:24 +00:00
drduh 3174935f99
Merge pull request #83 from hughobrien/gpg-conf-key-origin
remove broken gpg option (debian 9.6)
2018-12-30 02:34:25 +00:00
Hugh O'Brien a6431962a6 remove broken gpg option (debian 9.6)
As per [0], the --with-key-origin option is experimental.

0: https://www.gnupg.org/documentation/manuals/gnupg/GPG-Input-and-Output.html#index-with_002dkey_002dorigin
2018-12-29 20:12:09 +00:00
Hugh O'Brien 0f6e9948d7 mention debian-live user/pass in case of screen lock 2018-12-29 20:08:48 +00:00
Hugh O'Brien 80d5c0ed6c describe tmpfs clearing rather than init system (debian uses tmpfs) 2018-12-29 20:06:33 +00:00
drduh 94919459a6 Update gpg prefs, style and fix #21. 2018-12-27 20:26:37 -08:00
Matt T. Proud 7746c3381a Emphasize keytocard danger and fix inconsistency.
This commit applies a few editorial cleanups to the document:

  1. `keytocard` operations now contained emphasized warnings to convey
     that these operations are destructive.  I unknowingly made this
     mistake a few years ago and only learned of it recently.  For that
     reason, we should go out of our way on user's behalf with due
     diligence warnings.

  2. `$KEYID` was not uniformly used throughout the document in various
     command line input literals.  This is now fixed.

  3. `YubiKey` was often represented as `Yubikey` and other
     inconsistent forms throughout the document.  This is now fixed,
     except in cases of URL, command output, etc.
2018-12-07 09:50:30 +01:00
drduh a68fa27309
Merge pull request #79 from Wheest/master
Agent Forwarding
2018-12-05 17:10:07 +00:00
Wheest 4e23c63bb4
Agent Forwarding
Was looking at how to access on remote machines, is a standard ssh workflow, but might be useful to have it here too.
2018-12-05 16:02:37 +00:00
Brice Gagnage 86e03e6d09
final draft 2018-12-04 15:11:13 +01:00
Brice Gagnage ee30767612
final draft 2018-12-04 15:03:00 +01:00
Brice Gagnage ffd7b674c8
updated draft 2018-12-04 13:16:18 +01:00