diff options
| author | drduh <github@duh.to> | 2019-02-06 20:25:04 -0800 |
|---|---|---|
| committer | drduh <github@duh.to> | 2019-02-06 20:25:04 -0800 |
| commit | e05dc4b5bd77b48d5db91ce7211c6ca81f84b0ff (patch) | |
| tree | 748b8224bd1545084807a116199d1f9143ecc37c /README.md | |
| parent | Merge pull request #94 from michael-k/install-instructions (diff) | |
| download | YubiKey-Guide-e05dc4b5bd77b48d5db91ce7211c6ca81f84b0ff.tar.gz | |
Update license and formatting
Diffstat (limited to 'README.md')
| -rw-r--r-- | README.md | 11 |
1 files changed, 7 insertions, 4 deletions
@@ -135,7 +135,11 @@ $ doas pkg_add gnupg pcsc-tools **macOS** -Download and install [Homebrew](https://brew.sh/) and the following Brew packages - `gnupg yubikey-personalization hopenpgp-tools ykman pinentry-mac` +Download and install [Homebrew](https://brew.sh/) and the following Brew packages: + +```console +brew install gnupg yubikey-personalization hopenpgp-tools ykman pinentry-mac +``` **Windows** @@ -143,7 +147,6 @@ Download and install [Gpg4Win](https://www.gpg4win.org/) and [PuTTY](https://put **Note** You may also need more recent versions of [yubikey-personalization](https://developers.yubico.com/yubikey-personalization/Releases/) and [yubico-c](https://developers.yubico.com/yubico-c/Releases/). - ## Entropy Generating keys will require a lot of randomness. To check the available bits of entropy available on Linux: @@ -1687,8 +1690,6 @@ And reload the SSH daemon (e.g., `sudo service sshd reload`). - If you receive the error, `Key does not match the card's capability` - you likely need to use 2048 bit RSA key sizes. -- If ssh authentication fails - add up to 3 `-v` flags to increase verbosity. - - If you receive the error, `sign_and_send_pubkey: signing failed: agent refused operation` - make sure you replaced `ssh-agent` with `gpg-agent` as noted above. - If you still receive the error, `sign_and_send_pubkey: signing failed: agent refused operation` - [run the command](https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=835394) `gpg-connect-agent updatestartuptty /bye` @@ -1699,6 +1700,8 @@ And reload the SSH daemon (e.g., `sudo service sshd reload`). - If you receive the error, `Permission denied (publickey)`, increase ssh verbosity with the `-v` flag and ensure the public key from the card is being offered: `Offering public key: RSA SHA256:abcdefg... cardno:00060123456`. If it is, ensure you are connecting as the right user on the target system, rather than as the user on the local system. Otherwise, be sure `IdentitiesOnly` is not [enabled](https://github.com/FiloSottile/whosthere#how-do-i-stop-it) for this host. +- If SSH authentication stil fails - add up to 3 `-v` flags to increase verbosity. + - If you totally screw up, you can [reset the card](https://developers.yubico.com/ykneo-openpgp/ResetApplet.html). # Notes |