Mastodawn

Today I learned we all have Linux seats, and I'm not entirely pleased. https://changelog.complete.org/archives/10826-i-learned-we-all-have-linux-seats-and-im-not-entirely-pleased

John Goerzen Jun 7

Show thread

Jessamyn Jun 6

@NickEast_IndieWriter @libraries @librarians I work in a public library and definitely feel this way all the time. "Hey all this stuff is yours and you already paid for it, we're just taking care of it for you"

John Goerzen Jun 6

Laffy Jun 5

Want some good news?

"‘Carol,’ Whose Detention Rattled Her Small Missouri Town, Is Released

Ming Li Hui’s detention by the immigration authorities brought the reality of Trump’s immigration crackdown to rural Missouri, where supporters rallied for her freedom."

...with this caveat:

“By no means are we in the clear,” Mr. Bolourtchi said. “But at this point I’m optimistic. It’s an immediate sigh of relief.” https://www.nytimes.com/2025/06/04/us/politics/carol-missouri-migrant.html?smid=nytcore-ios-share&referringSource=articleShare&sgrp=p&pvid=F5797B23-816C-4873-9E22-CE31944604D2

‘Carol,’ Whose Detention Rattled Her Small Missouri Town, Is Released

Ming Li Hui’s detention by the immigration authorities brought the reality of President Trump’s immigration crackdown to rural Missouri, where supporters rallied for her freedom.

The New York Times

John Goerzen May 31

tivasyk May 31

#quote | «If I only ever bump into you at parties, I'm never going to get to know you. I'll only know the things that you can shout over the din, that you don't mind everyone else knowing. I'll know some things about you but I won't know you. We may become acquaintances - even strong ones. I might think fondly of you and look forward to seeing you at the next party. But we'll never be friends».

ode to small (indie) web.

https://goodinternetmagazine.com/building-a-slow-web/

Building a slow web

The internet can feel like it's built for speed. You join a new service and you're presented with a feed. The name tells you all you need to know. The feed is the actor. You are the thing that is acted upon. You don't control the feed. Your role is

Good Internet

John Goerzen May 31

Kim Scheinberg May 31

What in the cinnamon toast fuck?!

From a friend on Facebook:

Civics is now considered a sensitive subject

Civics

John Goerzen May 30

Show thread

John Goerzen May 30

@codinghorror But worse, most of these pay-for tools stand on the backs of free tools, which the pay-for vendors rarely support. Of those many PHP products, how many of them share financially with the PHP authors? I strongly suspect these pay-for ssh clients are mostly using FLOSS code (and if they've rolled their own ssh clients, that itself is a reason for security concern). I could buy the $10 app, but then I can't trust it, and suspect the people that wrote most of the code are ignored

John Goerzen May 30

Show thread

John Goerzen May 30

@codinghorror I had already been using Linux as my primary desktop for 12 years when you wrote that, and still run Debian now. I feel that it misses something; I have no problem supporting software financially, but the non-monetary freedoms of FLOSS are so important. For instance, I went searching for mobile ssh clients that support FIDO2 keys lately. None are free, but what's worse, none have source available. I have only the vendor's word that they're secure, and that's not comforting 1/

John Goerzen May 18

Sönke Schwardt-Krummrich May 18

I have wanted to use my Yubikeys for a secure SSH login for some time now. But like @jgoerzen, I have come across many incorrect, poorly explained and inadequately explained instructions. It looks like John has now written the ultimate guide for #SSH with #FIDO2/U2F hardware keys that beats all other guides I know of.

https://www.complete.org/easily-using-ssh-with-fido2-u2f-hardware-security-keys/

Easily Using SSH with FIDO2/U2F Hardware Security Keys

A lot of new hardware security keys (Yubikey, Nitrokey, Titan, etc.) now support FIDO2 (aka U2F aka Webauthn aka Passkey; yes it’s a mess). So does OpenSSH. This spells good news for us, because it is far easier to use than previous hardware security types (eg, PKCS#11 and OpenPGP) with ssh. A key benefit of all this, if done correctly, is that it is actually impossible to access the raw SSH private key, and impossible to use it without the presence of the SK and a human touching it.

www.complete.org

John Goerzen May 17

I recently bought a couple of YubiKey security keys. These support FIDO2/U2F, integrate well with #SSH

In researching how to do this, I found a lot of pages online with poor instructions. In many cases, they suggested insecure practices.

It turns out this whole process is quite easy. But I wanted to understand how it worked.

So, I figured it out, set it up myself, and then ut up a new, comprehensive page on my website: https://www.complete.org/easily-using-ssh-with-fido2-u2f-hardware-security-keys/ .

Blog post at https://changelog.complete.org/archives/10815-how-to-use-ssh-with-fido2-u2f-security-keys

Easily Using SSH with FIDO2/U2F Hardware Security Keys

www.complete.org

John Goerzen May 16

Hanno Zulla May 14

The cool thing about writing code is that the computer is doing exactly what you tell it to do.

The cool thing about debugging code is slowly learning what you actually told the computer to do.

Blog	https://changelog.complete.org
Homepage	https://www.complete.org
Highlights of my past posts (thread)	https://floss.social/@jgoerzen/109269147405130359