Menu
▾
▴
[Safekeep-devel] Support for SSH ed25519 keys, switch default key type to RSA
|
From: Alexander L. <al...@li...> - 2016-04-28 08:25:34
|
Hi, unfortunately the key types used for SSH connections are hardcoded in safekeep. Ubuntu 16.04 LTS comes with a newer version of OpenSSH which does not permit ssh-dss keys anymore by default. That means people who upgrade their machines will see their backups failing all of a sudden. The first step to rectify this is to add ed25519 to the list of supported keys, the second step is to use RSA keys instead of DSS keys, and bumping up the key length from 1024 to 4096 bits. I don't think we have to move to automatically generating ed25519 keys for now, as that may not work with older clients to be backed up... Attached is a patch that achieves steps 1 and 2. BTW, it would be great if you could move to github.com - then this would just have been a pull request ;) Best regards Alex -- "Those who surrender freedom for security will not have, nor do they deserve, either one." -- Benjamin Franklin |
