Re: Buster SSH

To: debian-user@lists.debian.org
Subject: Re: Buster SSH
From: Greg Wooledge <wooledg@eeg.ccf.org>
Date: Tue, 12 Sep 2017 13:59:59 -0400
Message-id: <[🔎] 20170912175959.bnemtohqt2qmabuu@eeg.ccf.org>
Mail-followup-to: debian-user@lists.debian.org
In-reply-to: <[🔎] CAKS_MTtGd+SKTCxSNhnTwpsiaw=LjTEwFFuntVPT-ie5rG4Z+Q@mail.gmail.com>
References: <[🔎] CAKS_MTs5eOMQOiT4=GGf_kF_B_cza8qkVgBauP9agqXa-z+Ccw@mail.gmail.com> <[🔎] CAO1P-kAkzjeM4E1upsD+g8D1aytMNjMmj9A6CE_4JPSQ4B2urw@mail.gmail.com> <[🔎] CAKS_MTtau1WUVw94yPJrmLVOdnK43UvxpA=vRcAgUzhX5oRpLA@mail.gmail.com> <[🔎] e260f94c-b116-b658-74c2-a6e9d7545a64@gmail.com> <[🔎] CAKS_MTtGd+SKTCxSNhnTwpsiaw=LjTEwFFuntVPT-ie5rG4Z+Q@mail.gmail.com>

On Tue, Sep 12, 2017 at 05:45:13PM +0000, Glenn English wrote:
> Bingo! User has dsa keys. Root has dsa and rsa keys.
> 
> Thanks. Now all I have to do is figure out what I did so many years
> ago to generate the dsas :-)

You probably did ssh-keygen -t dsa.

There was a period of time, about 20 years ago, when DSA keys were being
promoted due to the RSA patent, which expired in 2000 in the US.  More
recently, it has been learned that the DSA keys are "weak" (citation
needed), and so the recommendations have shifted.

Reply to:

Follow-Ups:
- Re: Buster SSH
  - From: Glenn English <ghe2001@gmail.com>
- Re: Buster SSH
  - From: Don Armstrong <don@debian.org>
- Re: Buster SSH
  - From: Sven Hartge <sven@svenhartge.de>

References:
- Buster SSH
  - From: Glenn English <ghe2001@gmail.com>
- Re: Buster SSH
  - From: Cindy-Sue Causey <butterflybytes@gmail.com>
- Re: Buster SSH
  - From: Glenn English <ghe2001@gmail.com>
- Re: Buster SSH
  - From: "Alexander V. Makartsev" <avbetev@gmail.com>
- Re: Buster SSH
  - From: Glenn English <ghe2001@gmail.com>

Prev by Date: Re: Buster SSH
Next by Date: Re: Buster SSH
Previous by thread: Re: Buster SSH
Next by thread: Re: Buster SSH
Index(es):
- Date
- Thread