Legacy option for key length?

David Newall openssh at davidnewall.com
Tue Jan 2 17:12:21 AEDT 2018


On 02/01/18 16:33, Ben Lindstrom wrote:
> And how many annoying "Do you really want to do this?" type questions 
> do you prompt the user and assume it is "fine"? 

I think zero.  I think the warning goes in the man page:

   --allow-insecure-short-key  This option allows use of keys shorter 
than 1024 bits, however, it is known that such keys can be broken quite 
quickly.  You never want to use this option, unless you are connecting 
to a server which does not allow a longer key.



More information about the openssh-unix-dev mailing list