| 29 Sep 2021 |
 Pacman99 | Thank you princemachiavelli for catching that | 15:45:25 |
| Pacman99 | https://github.com/divnix/digga/commit/46c7c712d79ea627faf74739a2e89438a9d214f8 | 15:48:06 |
 @florian:web3.foundation | In reply to @timdeh:matrix.org
sorry about the trouble, the follows patch should be completely removed at this point since it is now upstream No problem, I really appricate the work you have been doing. Just thought mentioning it here might give it some more attention. | 16:56:52 |
| @florian:web3.foundation | Btw, is anybody here using a security key (e.g. yubikey, nitrokey, etc.)? It seems to me that age-nix is not really capable of ever supporting them (due to the way age works) and sops-nix would be a far better candidate. | 17:42:42 |
| Pacman99 | I thought age got support for some security key | 21:03:58 |
 David Arnold (blaggacao) | Florian | W3F - OoO Mon/Tue yeah, please keep pushing on the things you might encounter. π | 21:39:32 |
| @florian:web3.foundation | In reply to @pachumicchu:myrdd.info
I thought age got support for some security key It seems that age can indeed be used via PIV, but it has some limits, e.g. no RSA4096. | 21:51:29 |
| @florian:web3.foundation | I also just learned that sops now supports age. π | 21:51:48 |
| David Arnold (blaggacao) | sops covers other use cases like secret lease that we don't want to support for devos, since the (current) scope is user machines.
And between pgp & age as the remaining options, we wanted to default to age. | 22:02:18 |
| David Arnold (blaggacao) | sops would be just an additional layer of complexity, in this case. | 22:02:45 |
| David Arnold (blaggacao) | * `sops` covers other use cases like secret lease that we don't want to support for devos, since the (current) scope is user machines.
And between pgp & age as the remaining backend options in `sops`, we wanted to default to `age`. | 22:03:41 |
 @timdeh:matrix.org | Florian | W3F - OoO Mon/Tue:
https://github.com/ryantm/agenix/pull/46 | 22:22:34 |
| @timdeh:matrix.org | It works, just have to make a slight trade off, either never require PIN or always require it. This is better than it was before where there was not even the option to not require the PIN, but it'll be more granular once work on an agent is worked out | 22:23:43 |
| 30 Sep 2021 |
 @kraftnix:matrix.org | In reply to @timdeh:matrix.org
Florian | W3F - OoO Mon/Tue:
https://github.com/ryantm/agenix/pull/46 i have been using this PR since you made it with no issues | 08:29:10 |
| @florian:web3.foundation | I am glad I asked, this is awesome. I have been working on generating Ed25519-based GPG and PIV keys from mnemonics (with the help of BIP39 dictionaries) to be used with security keys. | 08:44:28 |
| @florian:web3.foundation | A very rudimentary version can be found here: https://github.com/gliology/mind-the-gap | 08:48:31 |
| David Arnold (blaggacao) | Florian | W3F - OoO Mon/Tue very interesting! Can you make that work with age? As a general stance, I hold the opinion that we should try to further the deprecation of pgp wherever we can. | 13:51:47 |
| @florian:web3.foundation | In reply to @blaggacao:matrix.org
Florian | W3F - OoO Mon/Tue very interesting! Can you make that work with age? As a general stance, I hold the opinion that we should try to further the deprecation of pgp wherever we can. I have been working on PIV support with the same library the age plugin uses, so there should be nothing in the way of it. It just needs some more fine tuning. | 13:54:29 |
| @florian:web3.foundation | Also it seems the age plugin currently uses P265, so far I have been focusing on Ed25519. | 13:55:33 |
| @florian:web3.foundation | It should also be fairly easy to generate the key on the host and to output it as mnemonic before writing it to the yubikey inside the age plugin. | 13:57:09 |
| Pacman99 | I don't really have an opinion on master vs main for branch names, but can we make sure devos and digga use the same convention. Its really confusing having to switch between the in such connected projects. | 18:05:23 |
| Pacman99 | * I don't really have an opinion on master vs main for branch names, but can we make sure devos and digga use the same convention. Its really confusing having to switch between them in such connected projects. | 18:05:37 |
| @timdeh:matrix.org | I see no problem with master, but I initially tried to skirt the controversy all together when I started with core. I think the politically charged motivations for changing everything to main are kinda stupid and I never would have done so myself, but somebody went under my nose π
In any case, master is more in line with virtually every other project in the Nix community, so that would be my vote.
| 18:19:22 |
| @timdeh:matrix.org | * I see no problem with master, but I initially tried to skirt the controversy all together when I started with core. I think the politically charged motivations for changing everything to main are stupid and dangerous and I never would have done so myself, but somebody went under my nose π
In any case, master is more in line with virtually every other project in the Nix community, so that would be my vote.
| 18:21:00 |
| @timdeh:matrix.org | I also do not wish to be a dictator though, so if enough be oppose we could take a vote | 18:37:53 |
| @timdeh:matrix.org | * I also do not wish to be a dictator though, so if enough people oppose we could take a vote | 18:38:04 |
| Pacman99 | It seems wrong to just assume people are offended by the term master, a name that is used in many other ways. Also seems like github is trying to virtue signal with the widespread name change.
But I do kind of like main better simply because its easier to type and it is more descriptive of the branches purpose. | 18:50:46 |
| Pacman99 | I do agree with you in that devos's master branch should not have been renamed without any discussion with you and other contributors. | 18:52:41 |
| @timdeh:matrix.org | I have no objection to the name main itself, my chief objection could probably be summed up in this brilliant quote:
βThe simple step of a courageous individual is not to take part in the lie. "One word of truth outweighs the world.β
β Aleksandr I. Solzhenitsyn
| 19:14:18 |
| @timdeh:matrix.org | * I have no objection to the name main itself, my chief objection could probably be summed up by this brilliant quote:
βThe simple step of a courageous individual is not to take part in the lie. "One word of truth outweighs the world.β
β Aleksandr I. Solzhenitsyn
| 19:14:59 |
