improving passphrase protected private keys
Sven Kieske
svenkieske at gmail.com
Fri Jul 25 21:08:25 EST 2014
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hum,
no I'm a little bit concerned
that my request is actually not needed?
At least this is what I found in
the source, but I'm not that familiar
with it:
/* openssh private key file format */
#define MARK_BEGIN "-----BEGIN OPENSSH PRIVATE KEY-----\n"
#define MARK_END "-----END OPENSSH PRIVATE KEY-----\n"
#define MARK_BEGIN_LEN (sizeof(MARK_BEGIN) - 1)
#define MARK_END_LEN (sizeof(MARK_END) - 1)
#define KDFNAME "bcrypt"
#define AUTH_MAGIC "openssh-key-v1"
#define SALT_LEN 16
#define DEFAULT_CIPHERNAME "aes256-cbc"
#define DEFAULT_ROUNDS 16
from:
https://github.com/openssh/openssh-portable/blob/948a1774a79a85f9deba6d74db95f402dee32c69/sshkey.c
So it seems you actually use bcrypt as default?
Is this already in a released version available?
And if yes, since which version?
Sorry for creating this noise.
kind regards
Sven
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.22 (MingW32)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=4kU7
-----END PGP SIGNATURE-----
More information about the openssh-unix-dev
mailing list