OpenSSH RSA keys are not deprecated (Was Re: ssh-add no longer accepts passphrase)

To: debian-user@lists.debian.org
Subject: OpenSSH RSA keys are not deprecated (Was Re: ssh-add no longer accepts passphrase)
From: Andy Smith <andy@strugglers.net>
Date: Tue, 5 Aug 2025 20:17:42 +0000
Message-id: <aJJm5soB/EmAzFny@mail.bitfolk.com>
In-reply-to: <[🔎] 889d7d15-ee68-4868-ba4e-a4a70d485dd2@holgerdanske.com>
References: <[🔎] aJIL6nMfbJiGfy4n@phcomp.co.uk> <[🔎] 889d7d15-ee68-4868-ba4e-a4a70d485dd2@holgerdanske.com>

Hi,

On Tue, Aug 05, 2025 at 01:10:09PM -0700, David Christensen wrote:
> AIUI SSH, RSA keys, and SHA-1 are now considered bad practice:
> 
> https://news.ycombinator.com/item?id=34196504

The link you cite explains that this relates to the ssh-rsa signature
algorithm, not rsa public keys as used for authentication.

Thanks,
Andy

-- 
https://bitfolk.com/ -- No-nonsense VPS hosting

Reply to:

References:
- ssh-add no longer accepts passphrase
  - From: Alain D D Williams <addw@phcomp.co.uk>
- Re: ssh-add no longer accepts passphrase
  - From: David Christensen <dpchrist@holgerdanske.com>

Prev by Date: Re: ssh-add no longer accepts passphrase
Next by Date: Re: ssh-add no longer accepts passphrase
Previous by thread: Re: ssh-add no longer accepts passphrase
Next by thread: Re: ssh-add no longer accepts passphrase
Index(es):
- Date
- Thread