Date: Thu, 14 Aug 2008 10:41:18 -0700 From: Gavin Spomer <spomerg@cwu.EDU> To: freebsd-stable@freebsd.org Subject: Re: ssh-keygen between SuSE and FreeBSD Message-ID: <48A40BCE020000900001C192@hermes.cwu.edu>
next in thread | raw e-mail | index | archive | help
>=20 >>> Ronald Klop <ronald-freebsd8@klop.yi.org> 08/14/08 10:34 AM >>> > >> I'm not quite sure right now why you're using rsa keys. I'm always = using > >> dsa keys (ssh-keygen -t dsa). It comes to my mind, that rsa keys are = for > >> ssh version 1, while dsa keys are for ssh version 2. > >> But I could be wrong here ;) > >> No man ssh handy right now, sorry. > > > > If that's true, then I believe I will start using the dsa ones! I = think =20 > > I chose rsa because the FreeBSD manual indicated I could use either = and =20 > > I could only find settings for enabling rsa in sshd_config on the = remote =20 > > servers, but I'll look again... >=20 > This story about rsa and dsa is not true. > Rsa wasn't free (patents or something else) until a few years ago. So = =20 > everybody used dsa. But since quite some time it doesn't matter what you = =20 > use. I don't know about advantages of one above the other. In daily use = =20 > they are the same. >=20 > Ronald. Thanks for more info. Maybe some people think that because of the = following lines in sshd.config? # HostKey for protocol version 1 #HostKey /etc/ssh/ssh_host_key # HostKeys for protocol version 2 #HostKey /etc/ssh/ssh_host_dsa_key Although the 2nd line *doesn't* read "#HostKey /etc/ssh/ssh_host_rsa_key", = maybe people are associating dsa with protocol 2 because of the 3rd and = 4th lines?
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?48A40BCE020000900001C192>