What’s the current best practice for auth on ToolForge?
I have a passphrase on my public ssh key. I’ll be accessing toolforge from my MacBook
which is protected with Apple’s Touch ID fingerprint scanner. I’ll be nailing up a tmux
session.
So, most of the time, there will be an active ssh session into wfmlabs protected only by
my fingerprint touch. If the ssh session goes down (i.e. reboot or network change), it’ll
be a touch plus my ssh passphrase.
Is this considered an appropriate level of protection for this environment?