1024-bit RSA keys in danger of compromise (fwd)
Brett Eldridge
brett at atomicgears.com
Sun Mar 31 18:15:14 UTC 2002
On Mon, 25 Mar 2002, Len Sassaman wrote:
> I've mailed Theo de Raadt asking if OpenSSH has an undocumented
> mechanism for specifying minimum permitted key size that I don't know
> about. If there is one, I'll certainly post a follow-up.
the new CVS versions of OpenSSH (the current portable CVS version doesn't
have the changes quite yet) allow you to specify a minimum key lentgh as a
#define at compile time. see ssh.h:
#define SSH_RSA_MINIMUM_MODULUS_SIZE 768
- brett
More information about the NANOG
mailing list