• Home
  • About

Saved searches

  • Remove
  • Verified account @
Suggested users
  • Verified account @
  • Verified account @
  • Language: English
    • Bahasa Indonesia
    • Bahasa Melayu
    • Català
    • Čeština
    • Dansk
    • Deutsch
    • English UK
    • Español
    • Filipino
    • Français
    • Hrvatski
    • Italiano
    • Magyar
    • Nederlands
    • Norsk
    • Polski
    • Português
    • Română
    • Slovenčina
    • Suomi
    • Svenska
    • Tiếng Việt
    • Türkçe
    • Ελληνικά
    • Български език
    • Русский
    • Српски
    • Українська мова
    • עִבְרִית
    • العربية
    • فارسی
    • मराठी
    • हिन्दी
    • বাংলা
    • ગુજરાતી
    • தமிழ்
    • ಕನ್ನಡ
    • ภาษาไทย
    • 한국어
    • 日本語
    • 简体中文
    • 繁體中文
  • Have an account? Log in
    Have an account?
    · Forgot password?
    New to Twitter?
    Sign up
By using Twitter’s services you agree to our Cookie Use and Data Transfer outside the EU. We and our partners operate globally and use cookies, including for analytics, personalisation, and ads.
thatcks's profile
Chris Siebenmann
Chris Siebenmann
Chris Siebenmann
@thatcks

Chris Siebenmann

@thatcks

That cks. Overcommitted sysadmin, photographer, bicyclist, and other multitudes. I write a lot of words for a programmer.

Joined December 2011
  • © 2016 Twitter
  • About
  • Help
  • Terms
  • Privacy
  • Cookies
  • Ads info
Dismiss
Previous
Next

Go to a person's profile

Saved searches

  • Remove
  • Verified account @
Suggested users
  • Verified account @
  • Verified account @

Retweet this to your followers?

Optional comment for Retweet
 
 

Saved searches

  • Remove
  • Verified account @
Suggested users
  • Verified account @
  • Verified account @
140

Are you sure you want to delete this Tweet?

Promote this Tweet

Block

  • Add a location to your Tweets

    When you tweet with a location, Twitter stores that location. You can switch location on/off before each Tweet and always have the option to delete your location history. Learn more

    Profile summary

    Your lists

    Create a new list

    Under 100 characters, optional
    Privacy

    Your reply includes the people in this conversation up to this point. Learn more

    Copy link to Tweet

    Embed this Tweet

    Embed this Video

    Add this Tweet to your website by copying the code below. Learn more

    Add this video to your website by copying the code below. Learn more

    Hmm, there was a problem reaching the server.

    Preview

    Log in to Twitter

    · Forgot password?
    Don't have an account? Sign up »

    Sign up for Twitter

    Not on Twitter? Sign up, tune into the things you care about, and get updates as they happen.

    Sign up
    Have an account? Log in »

    Two-way (sending and receiving) short codes:

    Country Code For customers of
    United States 40404 (any)
    Canada 21212 (any)
    United Kingdom 86444 Vodafone, Orange, 3, O2
    Brazil 40404 Nextel, TIM
    Haiti 40404 Digicel, Voila
    Ireland 51210 Vodafone, O2
    India 53000 Bharti Airtel, Videocon, Reliance
    Indonesia 89887 AXIS, 3, Telkomsel, Indosat, XL Axiata
    Italy 4880804 Wind
    3424486444 Vodafone
    » See SMS short codes for other countries

    Confirmation

     

    Buy Now

    Hmm... Something went wrong. Please try again.

    Previous Tweet Next Tweet
    Chris Siebenmann ‏@thatcks Feb 7

    This is my sad face when people sing the praises of SSH certificates and a SSH CA as a replacement for personal SSH keypairs.

    8:02 PM - 7 Feb 2016
    0 retweets 0 likes
      1. ∂irac·ẅitch☾˚ ‏@unixwitch Feb 7

        @thatcks Oh? No love for SSH certificates?

        0 retweets 0 likes
      2. Chris Siebenmann ‏@thatcks Feb 7

        @mistofvongola I consider them extremely dangerous because they have the old SSL CA problem: you can never be sure what's been issued.

        0 retweets 0 likes
      3. ∂irac·ẅitch☾˚ ‏@unixwitch Feb 7

        @thatcks They're can be nice in an org (where this can be advertised) and can help when people ignoring host key checks are the norm. :/

        0 retweets 0 likes
      4. View other replies
      5. Chris Siebenmann ‏@thatcks Feb 7

        @mistofvongola It would be neat if you could require both explicitly listed *and* signed by an organizational CA, but I don't think you can.

        0 retweets 0 likes
      6. ∂irac·ẅitch☾˚ ‏@unixwitch Feb 7

        @thatcks Took me a minute to find it in the man page, but I think what you're looking for is AuthorizedPrincipalsFile.

        0 retweets 0 likes
      7. Chris Siebenmann ‏@thatcks Feb 7

        @mistofvongola I don't think that option works for this. I believe principle names aren't SSH key IDs, they're -n key signing arguments.

        0 retweets 0 likes
      8. ∂irac·ẅitch☾˚ ‏@unixwitch Feb 7

        @thatcks Oh yes, you're right. That was my misunderstanding of the manual at a glance. Sorry about that!

        0 retweets 0 likes

    Loading seems to be taking a while.

    Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.

      Promoted Tweet

      false

      • © 2016 Twitter
      • About
      • Help
      • Terms
      • Privacy
      • Cookies
      • Ads info