this post was submitted on 04 Nov 2023
152 points (96.9% liked)

Open Source

31250 readers
324 users here now

All about open source! Feel free to ask questions, and share news, and interesting stuff!

Useful Links

Rules

Related Communities

Community icon from opensource.org, but we are not affiliated with them.

founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 15 points 1 year ago (1 children)

That's why you should get two.

And if you only need FIDO2/passkeys, the Security Key series is half the cost ($25) of the Yubikey 5 ($50) and all you really lose is OpenPGP and PIV (smart card) functionality.

Now I like playing with all the features of the 5, but most people should just need FIDO2.

[–] [email protected] 6 points 1 year ago (1 children)

I looked into this a year ago and most sites did not offer to register a second key, so if you lose your key, you can kiss many of your accesses goodbye. I would never have the key to my digital life on a keychain... The idea is good, but it will cause huge damage if you lose your HW key. On the other hand, if you are cautious and use different PWs and a password manager with 2FA, you are quite safe.

[–] [email protected] 2 points 1 year ago

Hear hear. Not allowing spare keys doesn't make sense. I have as many spare keys for my digital stuff as my apartment. But yeah, too few sites support that