Follow

OpenSSH 8.2 added support for u2f keys, although it isn't as cool as the per-site ECDSA key that WebAuthn uses. Based on digging through the code, enrolling a key generates a ECDSA key that is used to sign a normal public/private key pair. The server will only accept that public key if it is signed by the token, but there is nothing directly tying that server to that key, the host still has the private key, etc. openssh.com/txt/release-8.2

Sign in to participate in the conversation
(void *) social site

(void*)