On Tue, 10 Sep 2013, Kyle J. McKay wrote: > Are there any plans to add support for generating DSA 2048, 3072 keys? No. It requires a protocol extension (e.g. a "ssh-dss-v2" key method) and we aren't going to cook one up. If you want to remain compliant then I suggest you use one of the ECDSA keytypes. -d