!XLCFfvFhUkYwOMLbVx:nixos.org

agenix

367 Members
age-encrypted secrets for NixOS https://github.com/ryantm/agenix/96 Servers

Load older messages

SenderMessageTime
9 Jan 2026
@k900:0upti.meK900You can do more things with plugins13:22:11
@k900:0upti.meK900But I'm not sure there is a plugin that will allow you to directly do that13:22:19
@ivy:fargone.shIvyyeah i mean with plugins sorry meant to clarify that13:22:24
@ivy:fargone.shIvylike for example im using age-plugin-yubikey13:22:32
@ivy:fargone.shIvyand i wonder if theres a way to forward my yubikey over ssh13:22:41
@k900:0upti.meK900I don't know what age-plugin-yubikey does13:23:17
@k900:0upti.meK900You could probably do horrible usbip things13:23:22
@k900:0upti.meK900At the very least13:23:26
@ivy:fargone.shIvyi think it uses pcscd13:23:30
@ivy:fargone.shIvyand might be possible to forward that13:23:41
@k900:0upti.meK900To be honest it would be significantly faster to just copy out the secrets, rekey locally and copy them back in13:24:05
@k900:0upti.meK900Than doing any of this13:24:08
@ivy:fargone.shIvyim finding it a massive pain to be testing things on a remote server and then editing the keys all the time and have to git push or scp them13:24:46
@k900:0upti.meK900Have you considered just doing a remote deploy?13:24:57
@k900:0upti.meK900With the keys being available locally?13:25:01
@ivy:fargone.shIvyno i haven't13:25:37
@k900:0upti.meK900Then maybe consider doing that13:25:57
@ivy:fargone.shIvya bit scared to attempt that as the server is managed by me and another person and i dont want any part of hte config to not be on that server when she rebuilds13:26:01
@k900:0upti.meK900Put it in version control13:26:12
@ivy:fargone.shIvyalready is, shit just gets messed around a lot13:27:01
@ivy:fargone.shIvyactually found something that may do what i want https://github.com/CertainLach/age-plugin-gpg/13:27:33
@ivy:fargone.shIvyif i can get gpg agent forwarding to actually work sanely13:28:12
@k900:0upti.meK900You could steal https://git.lix.systems/the-distro/infra/commit/3ff9d00f7f89409b4fb42c8382931d9c6e275d7c13:29:24
11 Jan 2026
@ivank:matrix.orgivan joined the room.01:45:38
@9hp71n:matrix.orgghpzin joined the room.16:15:14
12 Jan 2026
@isabel:isabelroses.comisabel changed their profile picture.18:59:32
13 Jan 2026
@rabbitear:matrix.org@rabbitear:matrix.org joined the room.22:44:41
18 Jan 2026
@isabel:isabelroses.comisabel changed their profile picture.20:43:33
19 Jan 2026
@bl1nk:matrix.orgbl1nk changed their profile picture.10:39:16
20 Jan 2026
@innocentzer0:matrix.orginnocentzer0 joined the room.14:44:29

Show newer messages

Back to Room ListRoom Version: 6