so ive been looking into a Yubikey because i want 2FA on all of my accounts. however on yubicos website it says it supports linux. but the documentation is confusing and i want the Authentication app to setup my Yubikey on my main OS (NixOS) it seems that yubico only supports ubuntu, which i tried using in distrobox but with no success. so i looked on flathub and found this app however it gets me kinda spooked that the app is made by the community. is it safe to use my yubi key with? and if not does anyone have any idea how to compile from source, which btw im kinda a noob at compiling from source which i know is ironic because i run nix.

link to flathub application https://flathub.org/apps/com.yubico.yubioath

  • Hot Saucerman@lemmy.mlEnglish
    8·
    11 months ago

    That’s fair, I’m personally against biometrics, because if someone ever gets a copy of your fingerprint… it’s not a “password” that can be changed. Fingerprints can be faked.

    https://www.pcmag.com/news/hacking-fingerprints-is-actually-pretty-easy-and-cheap

    Once again, personal opinion. You gotta do what works for you.

    I’m hoping maybe the link I sent might have some info on getting it set up properly on NixOS. Maybe it just needs those udev rules installed first?

    • Steamymoomilk@sh.itjust.worksOPEnglish
      5·
      11 months ago

      yeah, i get the disadvantages of bio-metrics, however i kinda thought about worse case. lets say i have my yubi key and i misplace it, a bad actor gets a hold of my key and uses it to unlock my accounts. however if i got the yubikey with biometics if someone got there hands on it. its a paperweight with out my fingerprint. so its not that i think that bio-metrics is super secure but its added protection against theft. and a very interesting article. and i will try to setup udev rules as the guide you have sent may solve my problem, also thanks for the advise!!

      • umami_wasabi@lemmy.ml
        5·
        11 months ago

        The Yubikey is just one factor. The attacker still need to know your account and password to get hold of your account. However, if you’re using passwordless login, bio is a sensible choice.

    • Facebones@reddthat.com
      2·
      11 months ago

      I aim for “Something I am, something I have, something I know”

      Hate myself for it most of the time but it’s secure 😂