Comments for Brandon Checketts

Comment on SSH Agent Forwarding – An Underutilized Essential Tool by grin

grin — Wed, 01 Apr 2026 10:57:54 +0000

Indeed, agent forwarding is considered outright dangerous (unless only you control all forwarder machines). There are multiple “vulnerabilities” where forwarded agents may be caught/cloned and used to do nasty things, and if I remember correctly some of those are architectural attributes, not bugs.

https://rabexc.org/posts/pitfalls-of-ssh-agents

Comment on SSH Key Best Practices for 2025 – Using ed25519, key rotation, and other best practices by Vilius Šumskas

Vilius Šumskas — Fri, 06 Mar 2026 12:53:42 +0000

Great article! I think you could expand it a little bit in regards to key creation strategy, e.g. should individuals create only one key or should they be created per one individual per their device.

Regarding cloud providers, I don’t know AWS that much, but at least on Google Cloud there is what they call “OS Login”. It basically manages SSH keys for you, rotates them, etc., and then automatically provides the keys to VMs during login. Special lean binary (which acts as an SSH plugin) lets you in. Of course, this assumes that you trust Google with your private keys. On other hand, they probably could log in into VMs running on _their_ infra without you anyway 🙂

Comment on Disney Should Have a Developer Program by Brandon Checketts

Brandon Checketts — Tue, 24 Feb 2026 22:52:28 +0000

Also Disney Cruise itineraries and availability!

Comment on Tracking TCP connections with netstat by Alfonso

Alfonso — Fri, 16 Jan 2026 08:18:36 +0000

Fristly, thanks for your site. Secondly you can put netstat showing info in a continously way with the -c option. And finally, you can find a little explanation about those timers at the end of “man neststat”.
Apologies for my English.

Comment on SSH Key Best Practices for 2025 – Using ed25519, key rotation, and other best practices by Andy Barr

Andy Barr — Fri, 05 Dec 2025 12:53:48 +0000

What a brilliant article, really enjoyed reading this and the part about the comments and dates is a great idea!! Two years are just coming up for my keys, so will be rotating them very soon in the new year. Now I have to remember where I have pushed out the public key to!!

Just going to do a quick search to see if you have an article on securing the SSH Server setup as this would make my life complete!!

Comment on Twenty One Innovations From the Star Wars Galactic Star Cruiser by Dither

Dither — Fri, 21 Nov 2025 00:41:48 +0000

The way the 2 big rides on Batuu are integrated into the GSC storyline.

Culinary. Making food from a Galaxy Far, Far Away approachable by everyone. Fancy names, comfort food taste. Similar with drinks in the Sublight Lounge.

Comment on SSH Key Best Practices for 2025 – Using ed25519, key rotation, and other best practices by Brandon

Brandon — Thu, 23 Oct 2025 01:53:55 +0000

In reply to James French. Thanks for your explanation James. What you mentioned about signing host keys might make this worth me figuring it out

Comment on SSH Key Best Practices for 2025 – Using ed25519, key rotation, and other best practices by Brandon

Brandon — Thu, 23 Oct 2025 01:50:15 +0000

In reply to Richard. Thanks Richard, I've made this more clear

Comment on Twenty One Innovations From the Star Wars Galactic Star Cruiser by Michael

Michael — Tue, 21 Oct 2025 12:32:26 +0000

#3
Many other buildings at WDW and elsewhere use pre-recorded evacuation announcements in their fire alarm system.
#4
Most resort rooms at WDW have exterior balconies but the Starcruiser of course doesn’t, thus necessitating the alternative solution.

Comment on SSH Key Best Practices for 2025 – Using ed25519, key rotation, and other best practices by Stuart Whitmore

Stuart Whitmore — Sat, 19 Jul 2025 22:36:43 +0000

Very helpful. I’m not tech-clueless and have decades of development experience, but for me SSH key management has always been… poorly managed, to put it nicely. Basically following beginner instructions hastily whenever needed without ever really taking the time to think through what I was doing, etc. I understood the public/private key part but didn’t make the effort to optimize my key handling. Sloppy, I know. Anyway, this article brings me to a higher level where I can make more reasoned choices and actually manage what I’m doing. Much appreciated.