<gchristensen>
that was me wiping pollen off my keyboard :)
MichaelRaskin has joined #nixos-chat
<makefu>
typical qwerty!
<MichaelRaskin>
Now I am a bit intrigued
<gchristensen>
dvorak :$
<makefu>
never knew dvorak has upper and lower characters mixed ;)
<samueldr>
hitting caps lock?
<manveru>
i forgot caps lock exists
<makefu>
it actually looks awfully like dvorak layout, lets hope it is not also gchristensen's password :D
matthewbauer has quit [Read error: Connection reset by peer]
<infinisil>
I once had the genius idea to make a key on my keyboard output my master password and return. Doesn't fully work because of some characters, but it's still in there, I occasionally get surprised when I hit that button
matthewbauer has joined #nixos-chat
MichaelRaskin has quit [Ping timeout: 256 seconds]
MichaelRaskin has joined #nixos-chat
jD91mZM2 has quit [Ping timeout: 248 seconds]
matthewbauer has quit [Read error: Connection reset by peer]
jD91mZM2 has joined #nixos-chat
matthewbauer has joined #nixos-chat
matthewbauer has quit [Read error: Connection reset by peer]
matthewbauer has joined #nixos-chat
matthewbauer has quit [Ping timeout: 248 seconds]
Sonarpulse has joined #nixos-chat
nckx has quit [Quit: Updating my GNU GuixSD server — gnu.org/s/guix]
nckx has joined #nixos-chat
matthewbauer has joined #nixos-chat
<ldlework>
infinisil: at least put that on your yubikey
<infinisil>
I don't have one :(
* manveru
still has a yubikey from mtgox
<manveru>
only thing i got out of it :(
<ldlework>
heh
<tazjin>
I've a box full of yubikeys next to my desk, waiting for the day on which we find a use for them
<ldlework>
how about 2FA security
<tazjin>
yeah but we have that covered in a different way already
<tazjin>
maybe 3FA though, can never be secure enough
<ldlework>
tazjin: yubikey is nicer than basically anything else, since it is down to a touch
<ldlework>
well not yubikey in specific
<ldlework>
but capacative-dongle-things
<tazjin>
some years ago I wrote a thing for using yubikeys with luks key slots
<tazjin>
I don't think that works anymore, but there's a modern version of it that I've scrolled past in the configuration.nix man page recently
<ldlework>
what's a "luks key slot" ?
<tazjin>
luks is the high-level key management system for disk encryption on linux
<tazjin>
"linux unified key setup"
<ldlework>
Yeah but what's a "key slot" wrt luks?
<ldlework>
I see.
<tazjin>
so the way it works is you have one actual master key that decrypts your disk
<tazjin>
and a bunch of slots which are all individually encrypted versions of that key
<ldlework>
and you're saying you were using the yubikey for that
<tazjin>
so you can have a slot with a symmetric password that you can type in, and another slot with a challenge-response thing for yubikeys