Subnostr

Hey nostr:npub1qyxlpj2gl6dt2nfvkl4yyrl6pr2hjkycrdh2dr5r42n7ktwn7pdqrdmu7u got a few questions for you on my new OnlyKey. Haven't finished reading all the options, but am I correct in thinking there are no more than 24 slots you can save info to?

I guess the norm is to use a password manager, store the login to that in your key.

And the rest you can use to replace all the software 2FA things you've got?

Bill Cypher 6mo ago

2 kinds of 2fa.

Fido key, you must have the key and push a button on it. The computer will request FIDO from the key and it will enter a special mode. It will blink. At that point all buttons are the same, press any button to auth. You can be logged in to the key using either pin and it is the same FIDO key, no need to switch.

TOTP, this is a time based rolling number that needs to be entered. These are per slot on your Yubikey and you'll want to set them up username, password, and TOTP all on the same slot for one account.

How to best use it, my opinion. I use my onlykey for things I have to login to not inside a browser. So my account to unlock my laptop for example. I also use it to log in to my software password manager, don't use LastPass. Then I use my software password manager for all websites and crap where autofill is a thing.

Any account that does TOTP where the user and pass are in my software password manager I put the TOTP for that account in there too.

Now I have fido 2fa and a password you couldn't memorize if you wanted to on my software password manager.

One trick I've done is short press is password and long press is username tab password for things where sometimes the username is there and sometimes it isn't. You can also do long press username short press password for things where you have enter username page reload enter password like bitwarden does for their login flow.

Reply to this note

Please Login to reply.

Discussion

YODL 6mo ago

Thanks, this helps. Will read it a couple more times as I complete my setup probably.

I was thinking of keeping a few "browser passwords" in there which I regard as high value (appleid, main gmail, and banking), since it's seems more secure than say 1Password, but maybe that's stupid reasoning (I don't understand security of password managers that well).

This reminds me that I should probably back up my password manager key better...

I definitely wanna get all the 2FA stuff on there, since I don't trust the software ones to remain stable (had a friend lose his somehow and it was a serious issue).

Just writing this out in case you spot something foolish.

Thanks again

YODL 6mo ago

One odd thing I see vs documentation and what you describe, is I don't have a field for username in my slots. Don't really care too much about that, but odd

Bill Cypher 6mo ago

Um, what? In the application you use to program it click on a slot. I see label and username as the first and second field on the basic login tab.

Since the username and password functionality is basically a keyboard you can use a basic text editor to play and see the behavior of the various buttons.

Also you can set the keyboard speed so high that it loses characters and you fail to login.

YODL 6mo ago

I love how it types it out, it's cute to watch.

Yeah man, I even updated the firmware and there's Label, followed by Password,...

See for yourself

Bill Cypher 6mo ago

Interesting. What OS are you running the application on? I definitely have it on Ubuntu.

YODL 6mo ago

MacOS séquoia 15.5

Bill Cypher 6mo ago

Never owned a Mac. I would assume that is it though.

Bill Cypher 6mo ago

Also, you will forget that you need to wait for it to finish typing and click on something else one day. I do it all the time. It is an instant task for me so my brain insists it must be instant for the key.

YODL 6mo ago

Ngl, slightly miffed I can't put username in there. I'm going to dread typing that out manually each time even more now

YODL 6mo ago

Not sure what changed but it now displays the username option. Go figure

Bill Cypher 6mo ago

Problem solved.

YODL 6mo ago

Thanks for discussing with me. Got a few computer passwords and password manager password changed and secured on it now.

Also got around to changing Google and Apple passwords (since that big leak).

Copied into two onlykeys.

Will get around to adding 2FA stuff to them soon...maybe tomorrow

Bill Cypher 6mo ago

Nice.