[Ach] missing recommendations for ssh-keys

Sven Kieske svenkieske at gmail.com
Sun May 25 13:03:46 CEST 2014


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

>> 

>> What do you think?
> It's a good idea and obviously missing from the SSH section, are
> you willing to contribute that? We accept pull requests on GitHub
> after review.
> 
> Thanks, Aaron
> 

Well I'll need to dig a bit into it, as my tex skills are not that good
but I'll try to contribute something, we should also add imho some
information regarding the key format (you should use PKCS#8 for
password protected keys) as described here:
http://martin.kleppmann.com/2013/05/24/improving-security-of-ssh-private-keys.html
and here:
http://blog.patshead.com/2013/09/generating-new-more-secure-ssh-keys.html

But I don't know of any security paper from scientists which could
be cited, maybe someone from the community could assist with some
sources?

regards

Sven
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.22 (MingW32)
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=ro3X
-----END PGP SIGNATURE-----



More information about the Ach mailing list