Theo de Raadt wrote:
Well I moved to position that booting with a passphrase and then concatenate strong passphrase from an Yubikey configured with static passphrase would be better solution than keydisk and passphrase.
Although I don't have an Yubikey token now but as an Yubikey token is simulatin usb keyboard it should work. Has anybody tested Yubikey with new boot(8) asking for passphrase?
Then you had better start work on the usb stack for the bootcode.
This totally got a chuckle out of me. But really, since it pretends to be a USB keyboard, wouldn't it work? I haven't had trouble using USB keyboards when interacting with boot(8). It's probably the BIOS making it happen, but I'd hope the BIOS would do the same for the yubikey in that case.
--Kurt
