that’s genius. i have never even considered that you could use a (sub)domain with a local ip like that to get a certificate from a trusted ca. i ma not sure i understand the neccessity for api access to your dns service. is the txt record for LE different every time you have to pass a challenge? otherwise i imagine you could just set and forget the record.

thank you for the explanation, well appreciated!

could you expand a bit on your edit? so bitwarden extensions need a valid ssl certificate for the domain where the server is hosted? how do you get that for (i assume) a local domain? thank you for your time!

awesome. thank you so much for taking the time to respond!

that is really cool! i have so many questions! is it visible from the outside? can you still have an mri scan? does the metal detector at airports detect it? can you feel it under your skin?

So I guess a password for the law, and a hardware key for the lawless haha.

hahaha that’s crazy. A bit further than I am willing to go right now. Where do you have yours if you don’t mind me asking?

Thank you for the explanation. I wanted to not just buy the most popular thing from the near monopoly brand, but I really only read good things about the yubikey 5 series. At the moment I think I am veering towards buying that.

Thank you for the recommendations. Any first hand experience with these brands? I am looking mainly for reliability and durability. Otherwise they look quite good, maybe even a bit overkill for me with all the extra features.