Nobody needs ocsp or clr in their homelab. And if they’re a trained netsec professional they know that its far better with short-lived certs than any revocation model. Both zerossl and letsencrypt are easy to use - and works flawlessly with something like caddy on a wildcard domain, or an acme proxy. Openssl is easy, and you can clr with that or even use their ocsp for homelab.
Nah - storing cryptographic key pairs is a supported and valid use-case for fido2
Been using this for a while - yubico has a nice guide. Dunno why you struggled to find good info as i can just google «fifo2 ssh» and use the top link
Nevermind - i see OP is trying to reinvent a broken wheel. Ignore my comments on this post
Ive used Secure ShellFish and Remoter Pro for a few years. Both have served me well
But get an external keyboard no matter what client you use. Using on-screen keyboard is pain.
Nah - its not crap, its much better than signal for my low tech friends. You are confusing your ideology with usability.
This is not a truenas issue - its a docker thing. You’d do better by making your own docker-file and do your customisation the docker way.