North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Re: 1024-bit RSA keys in danger of compromise (fwd)

  • From: Brett Eldridge
  • Date: Sun Mar 31 13:18:51 2002

On Mon, 25 Mar 2002, Len Sassaman wrote:

> I've mailed Theo de Raadt asking if OpenSSH has an undocumented
> mechanism for specifying minimum permitted key size that I don't know
> about. If there is one, I'll certainly post a follow-up.

the new CVS versions of OpenSSH (the current portable CVS version doesn't
have the changes quite yet) allow you to specify a minimum key lentgh as a
#define at compile time. see ssh.h:

  #define SSH_RSA_MINIMUM_MODULUS_SIZE  768


- brett