From: Shawn Rutledge <lists@ecloud.org>
To: 9fans <9fans@9fans.net>
Subject: Re: [9fans] Solo factotum (was: Enterable namespaces: /proc/pid/$ns/srv)
Date: Mon, 29 Dec 2025 16:32:50 +0100 [thread overview]
Message-ID: <C758414B-6850-41F5-85AF-03E0D0A93E6B@ecloud.org> (raw)
In-Reply-To: <760adea1-7ed3-4c91-a320-8e54267cb01c@app.fastmail.com>
> On Dec 29, 2025, at 11:57, David Arroyo <droyo@aqwari.net> wrote:
>
> On Sun, Dec 14, 2025, at 07:43, sirjofri wrote:
>> More ideally, but also offtopic, I's like to have a factotum usb drive,
>> where the secrets never leave the usb device. It would talk 9p directly
>> over the serial bus.
>
> I think this is a great idea; an HSM-like device with an interface that
> doesn't suck. After some discussion about this idea on IRC, I want to
> try and implement it. I purchased the "security" variant of this family
> of microcontrollers:
This sounds like a great idea. But personally I would like to have a portable solution: something that works on all OSes. I currently use a yubikey to store an ED25519 private key that I can use for ssh (thus also git) and gpg (thus also “pass”, which uses gpg to store passwords) on every OS except 9. And it does the FIDO stuff too. So I wish yubikeys could be supported with factotum somehow too. I’m not quite sure what that would entail in practice; but it is a device that stores secrets that they promise can't be extracted from it.
Bitcoin wallet devices can be used this way too, but they tend to be bulkier and less robust.
------------------------------------------
9fans: 9fans
Permalink: https://9fans.topicbox.com/groups/9fans/T969c381dcd9c760d-Mc83861eb161a4e98c3fbb515
Delivery options: https://9fans.topicbox.com/groups/9fans/subscription
prev parent reply other threads:[~2025-12-29 15:39 UTC|newest]
Thread overview: 14+ messages / expand[flat|nested] mbox.gz Atom feed top
2025-12-29 10:57 [9fans] Solo factotum (was: Enterable namespaces: /proc/pid/$ns/srv) David Arroyo
2025-12-29 14:40 ` sirjofri via 9fans
2025-12-30 6:28 ` David Arroyo
2025-12-30 17:56 ` [9fans] Solo factotum Dworkin Muller
2025-12-30 21:37 ` sirjofri via 9fans
2025-12-30 23:29 ` ori
2025-12-31 4:24 ` Steve Simon
2025-12-31 5:21 ` David Arroyo
2025-12-31 17:31 ` ori
2025-12-31 21:47 ` Steve Simon
2025-12-31 9:40 ` sirjofri via 9fans
2025-12-31 16:26 ` ori
2025-12-31 8:51 ` Skip Tavakkolian
2025-12-29 15:32 ` Shawn Rutledge [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=C758414B-6850-41F5-85AF-03E0D0A93E6B@ecloud.org \
--to=lists@ecloud.org \
--cc=9fans@9fans.net \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).