Setting default ECDSA size in ssh-keygen to 521.
Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
This commit is contained in:
parent
4371b1d9fc
commit
55c7984944
GPG key ID:
BCC918A2ABD66424
2 changed files with 28 additions and 0 deletions
27
debian/patches/progress-linux/0002-ssh-keygen-default-ecdsa-size.patch
vendored
Normal file
27
debian/patches/progress-linux/0002-ssh-keygen-default-ecdsa-size.patch
vendored
Normal file
|
|
@ -0,0 +1,27 @@
|
|||
Author: Daniel Baumann <daniel.baumann@progress-linux.org>
|
||||
Description: Setting default ECDSA size in ssh-keygen to 521.
|
||||
|
||||
diff -Naurp openssh.orig/ssh-keygen.1 openssh/ssh-keygen.1
|
||||
--- openssh.orig/ssh-keygen.1
|
||||
+++ openssh/ssh-keygen.1
|
||||
@@ -296,7 +296,7 @@ For ECDSA keys, the
|
||||
flag determines the key length by selecting from one of three elliptic
|
||||
curve sizes: 256, 384 or 521 bits.
|
||||
Attempting to use bit lengths other than these three values for ECDSA keys
|
||||
-will fail.
|
||||
+will fail and the default is 521 bits.
|
||||
ECDSA-SK, Ed25519 and Ed25519-SK keys have a fixed length and the
|
||||
.Fl b
|
||||
flag will be ignored.
|
||||
diff -Naurp openssh.orig/ssh-keygen.c openssh/ssh-keygen.c
|
||||
--- openssh.orig/ssh-keygen.c
|
||||
+++ openssh/ssh-keygen.c
|
||||
@@ -82,7 +82,7 @@
|
||||
*/
|
||||
#define DEFAULT_BITS 4096
|
||||
#define DEFAULT_BITS_DSA 1024
|
||||
-#define DEFAULT_BITS_ECDSA 256
|
||||
+#define DEFAULT_BITS_ECDSA 521
|
||||
|
||||
static int quiet = 0;
|
||||
|
||||
1
debian/patches/series
vendored
1
debian/patches/series
vendored
|
|
@ -27,3 +27,4 @@ regress-conch-dev-zero.patch
|
|||
configure-cache-vars.patch
|
||||
pam-avoid-unknown-host.patch
|
||||
progress-linux/0001-ssh-keygen-default-rsa-size.patch
|
||||
progress-linux/0002-ssh-keygen-default-ecdsa-size.patch
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue