Lmst

I have officially deleted my Amazon account and cut ties with their ecosystem entirely. For a long time, the convenience of Prime felt like a necessary evil, especially since they have a warehouse in my city and can do same day shipping. But I can no longer reconcile the big tech giant's behavior with the values I promote at Terminal Tilt. As a privacy advocate and FOSS supporter, continuing to feed the machine feels increasingly hypocritical.

Ethically, their treatment of labor is indefensible. Between the terrible warehouse conditions and the dark patterns designed to make canceling subscriptions nearly impossible, it is clear they view both employees and customers as numbers to be exploited, with contempt. Their anti-competitive practices have done irreparable harm to small businesses and independent creators who are forced to play in a rigged sandbox.

As an FSF and EFF member, I believe privacy is a fundamental right. Amazon's business model relies on massive data harvesting and a huge surveillance network that I simply do not want to be a part of. Deleting my account is my way of reclaiming my digital sovereignty and refusing to let my personal data be a product in their inventory.

The change also affects how I handle Terminal Tilt going forward. I am officially ending the use of Amazon affiliate links for the channel. While the links are a standard revenue stream for most creators, I refuse to track my audience into the Amazon ecosystem just for a small commission. I would rather the channel grow slower and more honestly than profit from a company that actively works against user freedom. Convenience is the enemy of sovereignty.

When I review products now, whether it is the security keys from @nitrokey , @yubico , and Token2 or open source hardware, I will provide links to direct manufacturers or ethical, privacy-respecting retailers instead. Convenience should never be the primary metric for our choices.

If you want to support my work on Linux, privacy, and the #NoAI movement, I encourage you to use my LiberaPay or Ko-Fi links. Supporting creators directly ensures that the content remains independent and free from the influence of the Epstein class and corporate overlords. You can find all my direct support links on my self-hosted Linkstack: https://links.terminaltilt.com

It feels good to be out. It is time to prioritize people and principles over same-day shipping.

#DeleteAmazon #AmazonBoycott #Amazon #Privacy #FOSS #Linux #TerminalTilt #EthicalConsumerism #Ethics #InfoSec #Yubikey #Nitrokey #Token2 #2FA #MFA #Surveillance #SurveillanceCapitalism #DigitalSovereignty #SelfHosting

A photo of five hardware security keys arranged in a half circle on a dark desk mat. From left to right: two YubiKeys with gold touch buttons, a black Nitrokey 3A NFC in the center, and two Token2 keys on the right, one featuring a pattern of lock icons and the other with a fingerprint sensor.

🚨 New Video: Stop Trusting Google With Your Keys (Part 1 of 5: Sovereign Authentication)

Convenience is the enemy of sovereignty.

You don't own your phone number; you lease it. If you rely on SMS or cloud-synced apps like Google Authenticator, you aren't securing your account. You are handing the keys to a landlord.

In the premiere of this new series, we break down the 4 Tiers of Authentication. We explain why SMS is a disaster, why I deleted Google Authenticator, and why hardware keys are the only way to truly own your access.

100% Human made. #NoAI :NoAI:

▶️ YouTube: https://www.youtube.com/watch?v=7Y8Q9LnSQxM

📺 PeerTube: https://gnulinux.tube/w/hbNHh7TjUNiCa98waLmHn1

📝 Blog Post: https://www.terminaltilt.com/2026/02/09/stop-trusting-google-with-your-keys/

Support the mission: ☕ https://ko-fi.com/terminaltilt | https://liberapay.com/terminaltilt

#TerminalTilt #NoAI #Security #Privacy #2FA #MFA #Yubikey #Nitrokey #Token2 #FOSS #Linux #Cybersecurity #SelfHosted #Google #DeGoogle #DigitalSovereignty #QueerCreator #DisabledCreator #HumanMade #TechEthics

Got myself some femboy-colored lanyards for my #nitrokey

Also this picture was #shotonPostmarketOS

Picture of my Nitrokey with 2 lanyards attached. One of them is light blue and the other is light pink

@BjornW @EC_OSPO @EC_DIGIT @bert_hubert @rriemann After login in with a password, I was able to setup a #nitrokey at https://ecas.ec.europa.eu/cas/userdata/webauthn/manageMyWebAuthnDevices.cgi (if you prefer some software solution: #bitwarden / #vaultwarden also works) #webauthn #passkey

Nitrokey 3: Nitrokey-app2 2.5.0 released

https://secburg.com/posts/nitrokey3-nitrokeyapp2-250-released/

#nitrokey #app #tools #tool

Frage in die Runde:

Wie steht ihr zu #NitroKey?
Ich verfolge den Open-Source-Ansatz bei Hard- und Software für den Stick schon länger, hab aber noch keine praktischen Erfahrungen damit.

Gerne teilen.

Frage in die Runde: Wie steht ihr zu #NitroKey? Ich verfolge den Open-Source-Ansatz bei Hard- und Software für den Stick schon länger, hab aber noch keine praktischen Erfahrungen damit. Gerne teilen.

To contrast Paypal with Cloudflare, this is how you do it correctly.

I was able to enroll all three of my hardware keys ( @nitrokey , @yubico , and Token2) without issue. No one key limits and no being forced into software backups.

When a platform actually respects FIDO2 as a standard, you can have true hardware redundancy.

Of course, I will mention all of this in my upcoming security key series.

#CyberSecurity #FIDO2 #Nitrokey #YubiKey #Token2 #Hardening #TerminalTilt #Cloudflare #Privacy #Security

A screenshot of the Cloudflare "Authentication" settings page. At the top, a green banner confirms "Two-Factor Authentication is Enabled." The "Security Key Authentication" section is also enabled and displays a table with three registered keys: a Nitrokey 3A NFC, a YubiKey 5C NFC, and Token2 PIN+ 3.3, all enrolled on January 23, 2026. The page also shows sections for mobile app and email authentication, along with a button to regenerate backup codes.

Is it 2026 or 2006? I just went to harden my PayPal account with my new review units.

Turns out, PayPal still only supports one physical security key. No backups allowed. If you want redundancy, they force you back to TOTP apps or (worse) SMS.

#CyberSecurity #FIDO2 #Yubico #Nitrokey #Privacy #Security #TerminalTilt #FinTechFail #Token2 #Banking #Money

A screenshot of the PayPal "Manage 2-step verification" settings page. It shows 2 step verification is ON, with a "YubiKey 5C NFC" listed as the only primary device. Under the "Your backups" section, only a "Third-party code generator" authenticator app is listed, with no option to add additional backup security keys.

Pynitrokey 0.11.3 released

https://secburg.com/posts/pynitrokey-0113-released/

#nitrokey #python #tools

Mail call. 📦

The @nitrokey 3A NFC just landed in the lab today. Finally getting my hands on a security key with fully open-source hardware and firmware (written in Rust).

They also included a sticker that sums up the channel pretty well.

Review and setup guide for Linux coming soon, going to spend the next few weeks putting it through its paces.

#Nitrokey #FCKBIGTCH #FOSS #Privacy #GNULinux #GNU #Linux #OpenSource #Security #NFC

You know what Big Tech is, right?

#BigTech #UnplugTrump #Nitrokey

Screenshot of homepage of Nitrokey. It shows a banner with "FCK", "BIG", "TCH" on the left side. In the top-left corner of the website different logos like X, Github, YouTube, LinkedIn, Instagram and Facebook are placed. Arrows connect the letters of Big Tech and the logos of Big Tech companies.

Weiß jemand woran es liegen könnte, dass mein #Nitrokey 3 NFC unter #Debian in #KeepassXC nicht erkannt wird? Ich habe alle Tipps aus der Dokumentation durch und es geht trotzdem nicht. 😢
Die Nitrokey App 2 erkennt ihn einwandfrei.
Ach ja, und auf dem #iPhone unter #iOS wird er gar nicht erkannt. Aber das scheint wohl normal zu sein.

I ran into a weird edge case where the openpgp-card-ssh-agent Rust crate panics when encountering a non-OpenPGP smartcard (in my case, a corporate MyEID card for Kerberos). This bricked my SSH agent setup whenever both cards were inserted.

Instead of waiting for an upstream patch, I wrote a quick LD_PRELOAD hook to intercept the PC/SC API (winscard.h). It wraps SCardListReaders and filters out the problematic reader ID from the multi-string buffer before returning it to the application.

It’s a rather dirty hack, but it allows two incompatible security stacks to coexist perfectly. Write-up and C code here:

https://blog.hofstede.it/card-wars-hiding-smartcard-readers-from-eager-rust-agents-with-ld_preload/

#linux #smartcard #nitrokey #devops #security #programming

//cc @hko -- Maybe you find that interesting as well :)

@pink @nitrokey @yubico

UPDATE #2: The Trifecta is Complete!

I’m thrilled to announce that Token2 is joining the upcoming security series!

I am aligning the Token2 review with their core mission: The death of legacy TOTP.

While many users still rely on codes, Token2 is pushing for a 100% phishing resistant future. We will be focusing exclusively on their Open Source, publicly audited FIDO2 stack. This is a massive win for the #FOSS community. Hardware that is both auditable and explicitly designed to move us past insecure, legacy protocols.

The Comparison is now set:

Yubico: The Industry Giant (Closed Source).

Nitrokey: The Open Hardware Veteran.

Token2: The Audited Open FIDO2 Specialist.

Thank you for the boosts! :tux:

#FOSS #CyberSecurity #Token2 #Yubico #NitroKey #Linux #TechReview #Transparency #TerminalTilt

Heute ist mein #Nitrokey angekommen, den ich am letzten #DID #DIDay #DUT bestellt habe 🤩 #DUTgemacht

Nitrokey users get a boost in USB security as Nitrokey highlights USBGuard to block malicious USB devices, rubber duckies, and OMG cables. 🔒🖥️ Learn how to lock down ports step‑by‑step:
https://docs.nitrokey.com/nitrokeys/nitrokey3/usbguard
#CyberSecurity #Infosec #USBGuard #Nitrokey