But there’s open FIDO2 sticks around. One would be SoloKeys. Then there’s other competitors, though not open.
But if you mean, simple authentication via stick, sure. Or you could do your own thing, watching via udev for the MAC ID, write a file somewhere sensitive and look in your login script if it exists.
apparently this is an issue with some part of the hardware that lots of hardware security devices use too, so not as simple as just buying/building an alternative
Can I roll my own with just USB and GPG?
https://old.reddit.com/r/privacytoolsIO/comments/ibajud/is_it_possible_to_make_a_security_key_by_myself/
But there’s open FIDO2 sticks around. One would be SoloKeys. Then there’s other competitors, though not open.
But if you mean, simple authentication via stick, sure. Or you could do your own thing, watching via udev for the MAC ID, write a file somewhere sensitive and look in your login script if it exists.
Thanks
apparently this is an issue with some part of the hardware that lots of hardware security devices use too, so not as simple as just buying/building an alternative
SoloKeys has open hardware sticks.
It seems to be largely the same attack that succeeded against Google’s Titan keys a few years ago, according to the article