OpenSSH’s ssh-keygen
command just got a great upgrade.
New video from @vkc@mspsocial.net
Edit:
She has a peertube channel: !veronicaexplains@tinkerbetter.tube and it federatess as a Lemmy Community
The Peertube video in Lemmy.ml: https://lemmy.ml/post/8842820
Woah peertube federating with lemmy is actually really cool!
tl;dw - ed25519 keys are now the default
Isn’t elliptic curves cryptography sensitive to quantum computers attack? Shor’s algorithm etc
Yes, it is. ed25519 depends upon discrete log for its security, which Shor’s algorithm can (theoretically, of course, not like it’s ever been done) efficiently solve.
The post-quantum algorithms are in active research right now. I don’t blame anyone for avoiding those at least until we’ve quantum computers big enough to solve baby toy elliptic curves.
i don’t think I’ve created an RSA key since 2017
I had to create one this year after discovering that connectbot (ssh client on Android) didn’t support agent forwarding otherwise.
Probably a good idea to look for a different client, call me tinfoil but I wouldn’t want to touch a very old mechanism that is supported/pushed by a very recognisable 3 letter agency
Probably. It’s in f-droid but increasingly looking not quite unmaintained, but not developed actively enough.
I’ve just started using SSH inside of Termux, got tired of all the weird pitfalls SSH Clients for Android usually have
TL;DR: It’ll use a new, more secure key type.