From 46480eba915af9dacf36da28173d13ed395a3e6e Mon Sep 17 00:00:00 2001
From: Alex Yancey <me@alexyancey.com>
Date: Mon, 19 Aug 2024 21:30:05 -0700
Subject: [PATCH 1/2] firmware warning

---
 content/SSH/Securing_SSH_with_FIDO2.adoc | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/content/SSH/Securing_SSH_with_FIDO2.adoc b/content/SSH/Securing_SSH_with_FIDO2.adoc
index b211d083..a4c78a9f 100644
--- a/content/SSH/Securing_SSH_with_FIDO2.adoc
+++ b/content/SSH/Securing_SSH_with_FIDO2.adoc
@@ -11,7 +11,7 @@ This guide provides instructions for integrating FIDO2 with SSH, focusing on res
 == Prerequisites
 
 * OpenSSH 8.3 or newer
-* FIDO2 security key (with ed25519 support)
+* FIDO2 security key with ed25519 support (requires firmware 5.2.3 or higher)
 * YubiKey Manager (for setting the FIDO2 PIN)
 
 == About Using FIDO2 Security Keys for SSH

From 94832855738c6611066856a6032bd5ec92f65ede Mon Sep 17 00:00:00 2001
From: Alex Yancey <me@alexyancey.com>
Date: Tue, 20 Aug 2024 00:27:13 -0700
Subject: [PATCH 2/2] Update Securing_SSH_with_FIDO2.adoc

---
 content/SSH/Securing_SSH_with_FIDO2.adoc | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/content/SSH/Securing_SSH_with_FIDO2.adoc b/content/SSH/Securing_SSH_with_FIDO2.adoc
index a4c78a9f..128dc74f 100644
--- a/content/SSH/Securing_SSH_with_FIDO2.adoc
+++ b/content/SSH/Securing_SSH_with_FIDO2.adoc
@@ -11,7 +11,7 @@ This guide provides instructions for integrating FIDO2 with SSH, focusing on res
 == Prerequisites
 
 * OpenSSH 8.3 or newer
-* FIDO2 security key with ed25519 support (requires firmware 5.2.3 or higher)
+* FIDO2 security key
 * YubiKey Manager (for setting the FIDO2 PIN)
 
 == About Using FIDO2 Security Keys for SSH
@@ -29,7 +29,9 @@ This guide provides instructions for integrating FIDO2 with SSH, focusing on res
 
 *Cryptographic Algorithm Options:*
 
-* *ecdsa-sk and ed25519-sk:* Both are ECC-based algorithms, with ed25519-sk recommended for better security and performance.
+* ed25519-sk
+** Recommended for better security and performance. Requires firmware 5.2.3 or higher.
+* ecdsa-sk
 
 *SSH Key Generation Options:*