Yubikey: Difference between revisions
imported>Flyfloh Add a hint to set up pinentry properly |
imported>Mic92 update yubikey-image |
||
| Line 65: | Line 65: | ||
It is best practice to create the keys on a system without network connection to avoid leakages. | It is best practice to create the keys on a system without network connection to avoid leakages. | ||
This [https://github.com/drduh/YubiKey-Guide guide] explains in depth the steps needed for that. | This [https://github.com/drduh/YubiKey-Guide guide] explains in depth the steps needed for that. | ||
There is also a [https://github.com/Mic92/dotfiles/blob/ | There is also a [https://github.com/Mic92/dotfiles/blob/dcc240e52fde423e2424144eef5053c29761b6d1/nixos/images/yubikey-image.nix nix expression] that creates a nixos live image with all necessary dependencies pre-installed. | ||
The image can be created with the [https://github.com/nix-community/nixos-generators nixos-generator tool] | The image can be created with the [https://github.com/nix-community/nixos-generators nixos-generator tool] | ||
and depending on the image copied onto a usb stick or executed directly using <code>kexec</code> | and depending on the image copied onto a usb stick or executed directly using <code>kexec</code> | ||