Does ssh-keygen really allow 521 bit ECDSA key generation?
Christian Hesse
list at eworm.de
Wed Feb 25 23:56:17 AEDT 2015
Eugene Bright <hexumg at gmail.com> on Wed, 2015/02/25 16:12:
> Hello!
>
> I found strange sentence in ssh-keygen man page. There is may be a misprint.
You are referring the fact that 521 is not the power of base 2?
Looks like this is valid nevertheless.
% ssh-keygen -t ecdsa -b 512
Invalid ECDSA key length - valid lengths are 256, 384 or 521 bits
% ssh-keygen -t ecdsa -b 521
Generating public/private ecdsa key pair.
[...]
Wikipedia adds a note about this as well:
http://en.wikipedia.org/wiki/Elliptic_curve_cryptography#cite_note-25
--
main(a){char*c=/* Schoene Gruesse */"B?IJj;MEH"
"CX:;",b;for(a/* Chris get my mail address: */=0;b=c[a++];)
putchar(b-1/(/* gcc -o sig sig.c && ./sig */b/42*2-3)*42);}
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 473 bytes
Desc: OpenPGP digital signature
URL: <http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20150225/24b83358/attachment.bin>
More information about the openssh-unix-dev
mailing list