| Commit message (Collapse) | Author | Files | Lines | ||
|---|---|---|---|---|---|
| 2020-09-25 | Change Debian ISO url to be generated from the contents of SHA512SUM. | Anthony Muller | 1 | -2/+2 | |
| This removes the need to maintain the version number, which is currently out of date. | |||||
| 2020-08-29 | Add option to retrieve additionaly entropy from YubiKey itself | Mirko Vogt | 1 | -0/+13 | |
| 2020-08-26 | change defaults and add info to #Require touch | Amolith | 1 | -3/+35 | |
| As mentioned in #197, the previous behaviour would require users to touch their key any time an authentication, signing, or encryption operation was performed. In some situations, this behaviour would be undesirable and the only way to revert it would be fully resetting the key and starting from scratch. Rather than using `fixed`, this commit simply turns the feature `on` so the user can change it later if they wish. Additionally, a note about the other policies was included so users can decide for themselves which fits their situation better. | |||||
| 2020-08-22 | Update README.md | bengim | 1 | -0/+2 | |
| fixing wrong cryptography version by explicitly installing PyOpenSSL | |||||
| 2020-08-14 | Correct spelling | Stefano Figura | 1 | -3/+3 | |
| 2020-08-14 | Update wording | Stefano Figura | 1 | -1/+3 | |
| Ensure that is clear that we do not need to modify keys or even plug the yubikey | |||||
| 2020-08-13 | Update notation section | Stefano Figura | 1 | -1/+1 | |
| 2020-08-13 | Add notations section | Stefano Figura | 1 | -0/+25 | |
| 2020-08-11 | Fix usage inconsistency | b1f6c1c4 | 1 | -5/+5 | |
| Master key shall only be used to certify other keys. The usage indicator in README.md is inconsistently shown as SC and C. | |||||
| 2020-05-27 | Set touch policy to fixed. | Kenny MacDermid | 1 | -3/+3 | |
| Setting the touch policy to `on` does not prevent the policy from later being turned off again. Setting it to `fixed` is more secure because it can not be turned off. If someone wants to disable the touch policy they can always restore the keys from the backups created in the guide. | |||||
| 2020-05-27 | Add information on potential PIN issues and how to debug them | Sebastian Schmieschek | 1 | -2/+5 | |
| I missed the error message when attempting to set a PIN of only 5 characters due to the UI repeating the options below it. Pinentry happily stores the bogus PIN and even counts down the retry counter when entering the correct (default) one. This can be resolved by unblocking the PIN. Once I ran the gpg-agent with debug output (a tip found in the added link), the issue was obvious. | |||||
| 2020-05-25 | Stack rank secure environment and add a few tips | drduh | 1 | -19/+42 | |
| 2020-05-24 | Fix order of revocation command. | Max Mäusezahl | 1 | -1/+1 | |
| According to 'man gpg' the order of arguments should be gpg [--homedir name] [--options file] [options] command [args] In this case '--gen-revoke' is the command, '$KEYID' is an argument and '--output $GNUPGHOME/revoke.asc' is an option. Previously this was incorrect (option came first) and would spawn an error. | |||||
| 2020-05-17 | Include --expert when editing master key | Mike Mazur | 1 | -1/+1 | |
| This is specifically during setup when rotating keys. | |||||
| 2020-05-04 | Fix broken anchor | Vladyslav Krylasov | 1 | -5/+5 | |
| There are two anchors with the same name and this breaks navigation. | |||||
| 2020-05-04 | Clarified wording | Jason Stelzer | 1 | -1/+1 | |
| 2020-05-04 | GPG keys on multiple computers | Jason Stelzer | 1 | -0/+1 | |
| I feel like this took me longer to figure out than it should have. | |||||
| 2020-05-03 | Address throw-keyids issue with mailvelope to fix #178 | drduh | 1 | -14/+18 | |
| 2020-05-03 | Split export pubkey from backup to fix #175 | drduh | 1 | -86/+95 | |
| 2020-05-03 | Disambiguate backup volume label to fix #176. | drduh | 1 | -77/+127 | |
| 2020-04-29 | Describe card serial number error | Vladyslav Krylasov | 1 | -28/+15 | |
| 2020-04-28 | Describe ykman PGP keys reset | Vladyslav Krylasov | 1 | -0/+6 | |
| 2020-04-28 | Add instruction to create a revoke certificate | apiraino | 1 | -0/+15 | |
| 2020-03-24 | Add steps for renewing (not rotating) sub-keys | Daniel Sockwell | 1 | -1/+102 | |
| As discussed in issue #164, the current section on Rotating Keys presents two alternatives: replacing the existing keys with a newly generated key or extending the validity of existing keys by changing their expiration. However, it only provides instructions for the first approach. This commit adds instructions for renewing sub-keys. I am far from an expert, and am submitting this change mostly in hopes that it will provide documentation for the next time I need to renew my sub-keys. I would welcome any changes or clarifications others would care to offer. | |||||
| 2020-03-02 | Added some additonal text describing alternatives that may be used | Murphy Laptop | 1 | -0/+15 | |
| 2020-02-12 | Bump Debian version, license year | drduh | 1 | -8/+32 | |
| 2020-01-22 | Add instructions for NixOS | Rodney Lorrimar | 1 | -0/+51 | |
| I just tested these steps on a spare laptop. | |||||
| 2020-01-22 | Add more detail about what to do with multiple YubiKeys | Rodney Lorrimar | 1 | -0/+16 | |
| 2020-01-22 | Add information about setting the primary user ID | Rodney Lorrimar | 1 | -0/+30 | |
| 2020-01-21 | Fix gnupg package name for Arch | Andrea Scarpino | 1 | -1/+1 | |
| `gnupg2` has been [removed since March 2012](https://lists.archlinux.org/pipermail/arch-dev-public/2012-March/022690.html) | |||||
| 2020-01-12 | fix broken links | wsyxbcl | 1 | -4/+4 | |
| 2020-01-07 | Update GitHub instructions on Windows | Mark Fayngersh | 1 | -1/+2 | |
| Add command to instruct Git to use WinGPG | |||||
| 2019-12-30 | Formatting cleanup | drduh | 1 | -23/+19 | |
| 2019-12-30 | Use larger partition sizes to fix #149. | drduh | 1 | -21/+22 | |
| 2019-12-16 | Fix typo in table of contents link | gusttt | 1 | -1/+1 | |
| 2019-12-14 | Document issue #145 and fix #142 | drduh | 1 | -12/+10 | |
| 2019-11-19 | Fix url formatting | drduh | 1 | -1/+1 | |
| 2019-11-19 | Update Debian version and fix #137 | drduh | 1 | -62/+66 | |
| 2019-11-17 | Mention yubikey-touch-detector | Maxim Baz | 1 | -1/+1 | |
| 2019-11-13 | Added a fix for failing ssh / GUI pinentry | Emile 'iMil' Heitor | 1 | -1/+1 | |
| 2019-11-07 | Add --keyserver flag pointing to Debian keyserver | Kiel C | 1 | -1/+1 | |
| Fixes #131 | |||||
| 2019-10-19 | Added important note about pin caching #135 | Sun Knudsen | 1 | -0/+2 | |
| 2019-10-09 | More lines with old debian version corrected | Jakub Skory | 1 | -4/+4 | |
| 2019-10-09 | New Debian version: 10.1.0 | Jakub Skory | 1 | -1/+1 | |
| Before curl returned http/404 | |||||
| 2019-09-27 | Update VM option | Gary Johnson | 1 | -5/+7 | |
| 2019-09-24 | Update README.md | Gary Johnson | 1 | -1/+1 | |
| Added primary source stating confirming that devices are read only in all but a few circumstances and that Keys ("secrets") cannot be read after being written to the device | |||||
| 2019-09-17 | put additional information into single line | Michael Vorburger ⛑️ | 1 | -3/+1 | |
| 2019-09-17 | fix link to YubiKey (non-NEO) Manager (fixes #124) | Michael Vorburger ⛑️ | 1 | -2/+2 | |
| 2019-09-17 | add 'sshd -eddd' Troubleshooting tip | Michael Vorburger ⛑️ | 1 | -1/+4 | |
| 2019-09-17 | simplify Agent Forwarding (RemoteForward typically not required) | Michael Vorburger ⛑️ | 1 | -12/+17 | |
 |
index : YubiKey-Guide | |
| Guide to using YubiKey for GPG and SSH | drduh |
| aboutsummaryrefslogtreecommitdiffstatshomepage |