ssh-keygen -t dsa limited to 1024?

Damien Miller djm at
Wed Sep 11 13:22:49 EST 2013

On Tue, 10 Sep 2013, Kyle J. McKay wrote:

> Are there any plans to add support for generating DSA 2048, 3072 keys?

No. It requires a protocol extension (e.g. a "ssh-dss-v2" key method) and
we aren't going to cook one up. If you want to remain compliant then I
suggest you use one of the ECDSA keytypes.


More information about the openssh-unix-dev mailing list