tech-security: Re: OpenSSH key size

Subject: Re: OpenSSH key size
To: Alistair Crooks <agc@pkgsrc.org>
From: Hubert Feyrer <hubert@feyrer.de>
List: tech-security
Date: 09/16/2005 02:15:14

On Thu, 15 Sep 2005, Hubert Feyrer wrote:
> I have no idea, but the latest OpenSSH version that came out last(?) week 
> has:
>
>  - Increase the default size of new RSA/DSA keys generated by
>    ssh-keygen from 1024 to 2048 bits.

Another place that probably needs change:

 	% grep ssh /etc/defaults/rc.conf
 	sshd=NO                 sshd_flags=""
===>	ssh_keygen_flags="-b 1024"      # generate 1024 bit keys if host keys missing


  - Hubert