Differences between revisions 7 and 8
Revision 7 as of 2023-01-09 02:07:33
Size: 1247
Editor: DominicRicottone
Comment:
Revision 8 as of 2023-04-06 16:22:04
Size: 1417
Editor: DominicRicottone
Comment:
Deletions are marked like this. Additions are marked like this.
Line 49: Line 49:
----



== See also ==

[[https://man.archlinux.org/man/core/openssh/ssh-keygen.1.en|ssh-keygen(1)]]

[[Encryption/OpenSSH|OpenSSH]]

[[Encryption/SSH|SSH]]

SSH KeyGen

ssh-keygen(1) is used to generate public-private keypairs. These keypairs are used primarily by OpenSSH.

Contents

  1. SSH KeyGen
    1. Installation
    2. Usage
      1. Legacy Format
      2. Commercial Services
    3. See also

Installation

ssh-keygen(1) is bundled with openssl.

Usage

To generate a new SSH key, try: 

ssh-keygen -t rsa -b 4096 -C "[email protected]"

Note that standards are always shifting. In the past, Github recommended a 2048 bits long key. Github now recommends the ed25519 algorithm, instead of rsa.

Legacy Format

OpenSSH 7.8+ uses a new format of SSH keys, which begin with -----BEGIN OPENSSH PRIVATE KEY-----. Some software are not prepared to parse this key format.

To generate a new key using the old format, add the -m PEM option.

To convert an existing key to the old format, try: 

ssh-keygen -p -f ~/.ssh/id_rsa -m pem -P "" -N ""

Commercial Services

Github and Gitlab both allow SSH key authentication.

See also

ssh-keygen(1)

OpenSSH

SSH

CategoryRicottone

Encryption/SSHKeyGen (last edited 2023-04-06 16:23:38 by DominicRicottone)