https://bitlex.li/tags/linux/Recent content in Linux on Learning Journey of Alexander AllgäuerHugoen-usWed, 15 Apr 2026 00:00:00 +0000https://bitlex.li/tutorials/yubikey-ssh-fido2/Wed, 15 Apr 2026 00:00:00 +0000https://bitlex.li/tutorials/yubikey-ssh-fido2/<p>The YubiKey supports four methods to enable hardware-backed SSH authentication.</p> <ul> <li>FIDO2</li> <li>PIV</li> <li>PGP</li> <li>OTP</li> </ul> <p>FIDO2 provides the highest security and comes with low complexity. The private key is non-exportable.</p> <h2 id="limitations">Limitations</h2> <ul> <li> <p>OpenSSH v 8.2.p1 is a requirement better 8.3 for the verify-required option, shouldn&rsquo;t be an issue since both versions were released in 2020.</p> </li> <li> <p>Windows SSH at the time of writing not supported. <br></p> </li> <li> <p>The Mac OS bundled openssh version doesn&rsquo;t support it but this can be fixed.</p>https://bitlex.li/tutorials/yubikey-autolockscreen/Tue, 14 Apr 2026 00:00:00 +0000https://bitlex.li/tutorials/yubikey-autolockscreen/<p>Automatically lock your Hyprland session the moment you pull your YubiKey out of the USB port. A udev rule triggers a screen lock script.</p> <h2 id="read-hyprlock-doc-first">Read hyprlock doc first!</h2> <blockquote> <p><strong>⚠️ :</strong> If you are using hyprland the default application to lock the screen is Hyprlock. Hyprlock does not automatically create a config, and without one, hyprlock will not render anything. But even without a config, your session will get locked and thus Hyprland will cover your session with a black screen.<br> <a href="https://wiki.hypr.land/Hypr-Ecosystem/hyprlock/">https://wiki.hypr.land/Hypr-Ecosystem/hyprlock/</a></p>https://bitlex.li/tutorials/yubikey-passwordless-sudo/Tue, 14 Apr 2026 00:00:00 +0000https://bitlex.li/tutorials/yubikey-passwordless-sudo/<p>Use a YubiKey touch to replace your password for sudo .</p> <h2 id="install-pam-u2f">Install pam-u2f</h2> <div class="highlight"><pre tabindex="0" style="color:#f8f8f2;background-color:#272822;-moz-tab-size:4;-o-tab-size:4;tab-size:4;-webkit-text-size-adjust:none;"><code class="language-bash" data-lang="bash"><span style="display:flex;"><span>sudo pacman -S pam-u2f </span></span><span style="display:flex;"><span>mkdir -p ~/.config/Yubico </span></span></code></pre></div><h2 id="register-the-keys">Register the keys</h2> <div class="highlight"><pre tabindex="0" style="color:#f8f8f2;background-color:#272822;-moz-tab-size:4;-o-tab-size:4;tab-size:4;-webkit-text-size-adjust:none;"><code class="language-bash" data-lang="bash"><span style="display:flex;"><span>pamu2fcfg &gt; ~/.config/Yubico/u2f_keys <span style="color:#75715e"># primary key</span> </span></span><span style="display:flex;"><span>pamu2fcfg -n &gt;&gt; ~/.config/Yubico/u2f_keys <span style="color:#75715e"># append backup key</span> </span></span></code></pre></div><h2 id="edit-pam">Edit PAM</h2> <blockquote> <p><strong>⚠️ Warning:</strong> Keep a root session open in another terminal in case something goes wrong.</p> </blockquote> <div class="highlight"><pre tabindex="0" style="color:#f8f8f2;background-color:#272822;-moz-tab-size:4;-o-tab-size:4;tab-size:4;-webkit-text-size-adjust:none;"><code class="language-bash" data-lang="bash"><span style="display:flex;"><span>sudo nano /etc/pam.d/sudo </span></span></code></pre></div><p>Add at the top:</p> <pre tabindex="0"><code>auth sufficient pam_u2f.so cue </code></pre><ul> <li><code>sufficient</code> → the YubiKey alone is enough to authenticate.</li> <li>Change to <code>required</code> if you want 2FA (YubiKey <strong>and</strong> password).</li> <li><code>cue</code> prints a hint when a touch is needed.</li> </ul> <h2 id="test-it">Test it</h2> <div class="highlight"><pre tabindex="0" style="color:#f8f8f2;background-color:#272822;-moz-tab-size:4;-o-tab-size:4;tab-size:4;-webkit-text-size-adjust:none;"><code class="language-bash" data-lang="bash"><span style="display:flex;"><span>sudo -s </span></span><span style="display:flex;"><span>Please touch the FIDO authenticator. </span></span></code></pre></div>https://bitlex.li/posts/ext4-xfs-btrfs/Mon, 13 Apr 2026 00:00:00 +0000https://bitlex.li/posts/ext4-xfs-btrfs/<p>A good comparison between the ext4, btrfs and xfs.</p> <p><a href="https://www.linuxteck.com/linux-file-system-comparison-ext4-xfs-btrfs/">https://www.linuxteck.com/linux-file-system-comparison-ext4-xfs-btrfs/</a></p>