F-Secure SSH / OpenSSH pubkey compatibilty?
Bob Proulx
bob at proulx.com
Mon Jun 21 08:31:54 EST 2004
Peter Stuge wrote:
> Bob Proulx wrote:
> > Should I be able to extract the key somehow in a compatible format?
>
> I think ssh-keygen from OpenSSH can convert the public key to it's
> prefered format. Try ssh-keygen -i, and/or see the man page.
Excellent! I can now see the man page says:
-i This option will read an unencrypted private (or public) key file
in SSH2-compatible format and print an OpenSSH compatible private
(or public) key to stdout. ssh-keygen also reads the `SECSH
Public Key File Format'. This option allows importing keys from
several commercial SSH implementations.
One thing about openssh's behavior slightly confuses me. I tried the
reverse path since I have openssh on my machines.
ssh-keygen -e
Enter file in which the key is (/home/bob/.ssh/id_rsa):
I want to convert the id_rsa.pub file and not the id_rsa file. But
experimenting shows that it does not matter which file I specify. So
I assume it internally converts from the private key to the public key
and exports the public key. I am assuming so. Which seems strange
that it prompts for the private key in that case. It would be less
confusing if it prompted for the public key. This is just a general
wishlist type of comment. I think I am off and running fine. I
should be able to make things work with this information.
Thank you very much for the pointer!
Bob
More information about the openssh-unix-dev
mailing list