- dan ( @dan@upvote.au ) 16•30 days ago
id_rsa shouldn’t exist any more.
- Björn Tantau ( @bjoern_tantau@swg-empire.de ) 26•30 days ago
If I had a nickel for every time I had to change my ssh key algorithm I’d have two nickels.
Which isn’t much but it’s concerning that it happened twice.
- Scoopta ( @Scoopta@programming.dev ) 7•29 days ago
Fact of the matter is RSA is perfectly secure still…and ECDSA/ED25519 should also be extinct given the rising need for post quantum cryptography
- Supermariofan67 ( @Supermariofan67@programming.dev ) 10•29 days ago
The problem is not the RSA math itself but that it is both extremely slow and implementing it is particularly susceptible to bugs and side channel attacks https://blog.trailofbits.com/2019/07/08/fuck-rsa/
- Scoopta ( @Scoopta@programming.dev ) 1•29 days ago
Most of the situations I encounter RSA are in projects where I hope RSA is implemented correctly. I have a lot of Let’s Encrypt certs that are still RSA and my main SSH keys are still RSA. All of these were generated quite some time ago. I understand the problem with projects that implement it incorrectly but I’d hope OpenSSH and certbot aren’t those projects 😥
- 🍆 💦 ( @peeteer@feddit.org ) 2•28 days ago
Azure DevOps only allows you to use RSA keys. This caused a major outage in May (they switched from V1 to V2) :).
- blackstrat ( @blackstrat@lemmy.fwgx.uk ) 8•29 days ago
None of them…
ssh-keygen -t ecdsa -b 384
Then get it signed and use the certificate.
- Gamma ( @GammaGames@beehaw.org ) English3•29 days ago
cat ~/.ssh/id[TAB]
- blackstrat ( @blackstrat@lemmy.fwgx.uk ) 2•29 days ago
SSH certificates are where its at.
- dosuser123456 ( @dosuser123456@lemmy.sdf.org ) 1•14 days ago
i havent even configured my ssh
~ $ cat ~/.ssh/id_rsa cat: /home/dos/.ssh/id_rsa: No such file or directory ~ $ cat ~/.ssh/id_ed25519 cat: /home/dos/.ssh/id_ed25519: No such file or directory
(i jut realized i gorgot rthis part)