SSH How To Create Public/Private Key Pair and with a Larger Keysize than 2048 bits

The problem is that by default ssh-keygen loves to generate an easy to crack 2048 bit key (RSA).  Supposedly having a larger keysize helps such as 4096 or 8096 but it is thought to be useless still against Quantum computing.

How can I check my existing keysize and type?

ssh-keygen -lf /path/to/your/id_rsa.pub

The output will be something like below followed by the hash.  The first number is the key size and the second part will be the type eg RSA, SHA256 etc..

2048 RSA

How can I create an ssh key?

-t = the type of key

-b = the key size (you probably shouldn't use that many 9s!)

ssh-keygen -t ed25519 -b 9999999999999

How can I see what types of keys my ssh version supports?

Don't use dsa it is weak and now deprecated in the latest ssh versions and many recommend ed25519 (EdDSA)

ssh-keygen -t
option requires an argument -- t
usage: ssh-keygen [-q] [-b bits] [-t dsa | ecdsa | ed25519 | rsa | rsa1]


Tags:

ssh, larger, keysize, bitsthe, default, keygen, generate, rsa, quantum, computing, existing, lf, id_rsa, pub, output, hash, eg, sha, etc, shouldn, supports, dsa, deprecated, versions, eddsa, requires, usage, bits, ecdsa,

Latest Articles

  • How high can a Xeon CPU get?
  • bash fix PATH environment variable "command not found" solution
  • Ubuntu Linux Mint Debian Redhat Youtube Cannot Play HD or 4K videos, dropped frames or high CPU usage with Nvidia or AMD Driver
  • hostapd example configuration for high speed AC on 5GHz using WPA2
  • hostapd how to enable and use WPS to connect wireless devices like printers
  • Dell Server Workstation iDRAC Dead after Firmware Update Solution R720, R320, R730
  • Cloned VM/Server/Computer in Linux won't boot and goes to initramfs busybox Solution
  • How To Add Windows 7 8 10 11 to GRUB Boot List Dual Booting
  • How to configure OpenDKIM on Linux with Postfix and setup bind zonefile
  • Debian Ubuntu 10/11/12 Linux how to get tftpd-hpa server setup tutorial
  • efibootmgr: option requires an argument -- 'd' efibootmgr version 15 grub-install.real: error: efibootmgr failed to register the boot entry: Operation not permitted.
  • Apache Error Won't start SSL Cert Issue Solution Unable to configure verify locations for client authentication SSL Library Error: 151441510 error:0906D066:PEM routines:PEM_read_bio:bad end line SSL Library Error: 185090057 error:0B084009:x509 certif
  • Linux Debian Mint Ubuntu Bridge br0 gets random IP
  • redis requirements
  • How to kill a docker swarm
  • docker swarm silly issues
  • isc-dhcp-server dhcpd how to get longer lease
  • nvidia cannot resume from sleep Comm: nvidia-sleep.sh Tainted: Linux Ubuntu Mint Debian
  • zfs and LUKS how to recover in Linux
  • [error] (28)No space left on device: Cannot create SSLMutex Apache Solution Linux CentOS Ubuntu Debian Mint
    • Copyright © realtechtalk.com 2024