Vault and Me: Taking It Too FarRead More →
Recently I've been thinking about how I could distribute secrets to my NixOS machines in a... relatively... decent way.
FreeNAS, FreeIPA, Samba and KerberosRead More →
As a foreword: the below solution is not recommended - it relies on a prerelease version of FreeNAS for some of its functionality, which isn't supported.
FreeNAS 10 comes with the ability to bind to a FreeIPA directory. Hooray! Let's try it out.
YubiKey Neo GnuPG on LinuxRead More →
Just a quick note to remind myself, when I inevitably forget.
The built-in GnuPG smartcard support doesn't really work particularly well, in my experience, with the YubiKey Neo. To fix this (and use pcscd) instead, put the following in