With an ssh agent and time-bounded key expiration one can have very strong passw... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		fpoling 51 days ago \| parent \| context \| favorite \| on: Native Secure Enclave backed SSH keys on macOS With an ssh agent and time-bounded key expiration one can have very strong password on the key that is convenient to use. Also password managers like 1password or Bitwarden support ssh-agent protocol so one can have a master password that protects both stored passwords and keys.

johncolanduoni 51 days ago [–]

How short of a time-bound do you use on your SSH keys?

fpoling 51 days ago | [–]

It is set to 15 minutes due to specifics of automation scripts that we use so they can run uninterrupted.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact