Klagarge/PIS
1
0
Fork 0
Code Actions Releases 2 Activity

chores: add metadata

Browse Source
This commit is contained in:
Rémi Heredero
2026-02-14 01:58:59 +01:00
parent acb13112c4
commit 135712e042
1 changed files with 13 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

21
README.md
View File

@@ -1,3 +1,16 @@
---
title: "PIS"
subtitle: "Policy for Internal Security"
#logo: "path/to/logo.png"
author: "Rémi Heredero "
language: "en"
tags: ["gpg", "ssh", "x509", "YubiKey", "security"]
toc: false
template: "simple"
#date: "2026-01-23"
#version: "0.0.1"
---
# Policy for Internal Security # Policy for Internal Security
This repo describes my P.I.S. (**P**olicy for **I**nternal **S**ecurity). This repo describes my P.I.S. (**P**olicy for **I**nternal **S**ecurity).
You'll find my personal guidelines for SSH / GPG on YubiKey and how to configure and create a key / certificate. You'll find my personal guidelines for SSH / GPG on YubiKey and how to configure and create a key / certificate.
@@ -195,14 +208,6 @@ This creates the file `id_ed25519_sk-keyring-cert.pub` that is the certificate t
--- ---
# x509
## Master YubiKey
I create a certificate in PIV slot 9a with Yubico authenticator. This CA would be used as a Root CA for my server.
TODO fix with XCA
---
# Troubleshooting # Troubleshooting
## GPG ## GPG
Sometimes, for unknown (for me) reason, you need to kill the gpg-agent to be able to use the YubiKey again. Sometimes, for unknown (for me) reason, you need to kill the gpg-agent to be able to use the YubiKey again.