RSA key configuration limitations
Jochen Bern
Jochen.Bern at binect.de
Tue Jun 14 08:01:30 AEST 2022
On 13.06.22 17:35, Brian Candler wrote:
> Or in retrospect, would it have been better to define the RSA algorithms
> with key size baked in?
>
> rsa1024-sha2-256
> rsa1536-sha2-256
> rsa2048-sha2-256
Have fun writing a config that disables all(!) the keys with less than,
say, 2 kbit ...
https://en.wikipedia.org/wiki/RSA_numbers
... "min=2048" is a tad more concise.
Regards,
--
Jochen Bern
Systemingenieur
Binect GmbH
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3449 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20220614/8a654d46/attachment.p7s>
More information about the openssh-unix-dev
mailing list