Markus Meissner

let's keep this, but currently this is considered more of a feature, as the key is "device-resident" ...

starting from the last release you can see every release here: https://github.com/Nitrokey/nextbox/releases ... before this point this will be challenging, you might get lucky and can extract it from the...

nope sorry, ssh is considered an expert feature with a very limited user base. 2FA for ssh is also very uncommon, if you need a higher security consider using a...

Low-prio means "not planned for the next major" release (1.1), we can clearly consider this for 1.2 then. Further you could check: https://support.nitrokey.com/t/nextbox-herunterfahren-und-zertifikate/3199 (even if in German) it describes roughly...

There are various possibilities to translate to english, inside chrom-ish browsers just a right click and "translate to english" or you could use one of the various web-translators.

this is partly solved by the current approach for "guided dns configuration", acquiring a certificate works using a DNS-verification.

Isn't this covered in https://github.com/Nitrokey/nextbox/issues/26 already ? but in short: port-forwarding and/or ssh access is (mostly) unrelated to the dynamic dns mechanism you use. DNS simply translates a (domain)name to...

interesting, actually this is a built-in ssh feature. On a first connection your local ssh client will ask the server for a fingerprint, which is unique to this server. (this...

nope, haven't been looking into extra hardening, yet. But happily added this issue and its first hints as a documentation todo to make this available for more ppl. Overall we...

Hey, so "generally" this might work, but the devil's in the details. The questions I cannot answer as we haven't tested that explicitly: * Adobe PDF signing: Depends on how...