Remix clone Hacker News

new | show | ask | jobs Github

▲

ahlCVA 2 hours ago

For what it's worth: You can set no-touch-required on a key (it's a generation-time option though).

▲

palata 2 hours ago | parent [-]

Sure, but then it is set to no-touch for every FIDO2 interaction I have. I don't want to touch for signing, but I want to touch when using it as a passkey, for instance.

	▲	Avamander an hour ago \| parent [-]
		Use the PIV applet for SSH and signing Git commits instead? Git supports S/MIME and SSH can use keys over PKCS#11 basically out-of-box on OSs that don't ship gpg-agent (that just interferes with SmartCard usage in general).