HOME
art gallery Linkedin GitHub Donations Our Recommendations
Login
Hashcat Cold Storage Premium
Info
Vuln Fact Check Server Managment Links
SSH
Auth.log Debug DNS key share Cheatpapper
Encryption
fido2 Twofish serpent .ssh/config cipher set sshd set cipher
Firewall
IP block list Fail2ban fail2ban Config SELinux
Tools
Mpiexec Rsync Mosh Glances SSHFS Tmate autossh XQuartz
VPN
SSH Tunneling Cloudflare Onion Network/Tor sshuttle SSH Proxy Reverse Tunnel SSH Tunnel ssh socksv5 proxy
Keys
CA Info Generate Ed25519 key Certificates keys CA & Host auth Backup Key OTP Hardware key SCP Trezor Ledger Nano X
Tweaks
DNS BASH Zsh ssh client env sshd env config X11
Configfiles
sshd, Single Node. sshd, Firewall Single Node. sshd, Cloud Firewall Single Node. sshd, Firewall X11. Win 11 OpenSSH Server

Trezor Model T


Trezor Model T is a hardware security key that can be used to securely store SSH keys and authenticate SSH sessions.
The Trezor-agent software is a command-line utility that allows you to use your Trezor Model T to authenticate SSH connections without exposing your private keys to the network or the computer you are connecting from.
The Trezor Model T supports several different types of public keys, including RSA, ECDSA, and Ed25519.
RSA keys are still widely used, newer key type Ed25519 are generally considered to be more secure and efficient.

To Generate Ed25519 keys with the Trezor Model T and Trezor-agent software, you can simply use the command 

 trezor-agent -e ed25519 user@host
The key generation is based on the identity and host, so it cannot be changed.

To Connect: 
 trezor-agent -e ed25519 -c user@host

Some of the benefits of using hardware security keys like the Trezor Model T for SSH authentication include increased security and protection against key theft or compromise, as well as convenience and ease of use.