Yeah - but it isnt

Its not open so it doesnt matter.

Source - it’s about open source, not access to the database

And looking at mobile games like Tacticus, there are loads of people with millions to burn on hobbies

Nobody needs ocsp or clr in their homelab. And if they’re a trained netsec professional they know that its far better with short-lived certs than any revocation model. Both zerossl and letsencrypt are easy to use - and works flawlessly with something like caddy on a wildcard domain, or an acme proxy. Openssl is easy, and you can clr with that or even use their ocsp for homelab.

Yeah - i mistook it for user keys, not host. Im guessing they used piv/smart-card and not fido, as fido is indeed made with interactive use in mind

Nah - storing cryptographic key pairs is a supported and valid use-case for fido2

Been using this for a while - yubico has a nice guide. Dunno why you struggled to find good info as i can just google «fifo2 ssh» and use the top link

Nevermind - i see OP is trying to reinvent a broken wheel. Ignore my comments on this post

Ive used Secure ShellFish and Remoter Pro for a few years. Both have served me well

But get an external keyboard no matter what client you use. Using on-screen keyboard is pain.

Nah - its not crap, its much better than signal for my low tech friends. You are confusing your ideology with usability.