SSH Agent keys >4096 bit?
Mika Suomalainen
mika.henrik.mainio at hotmail.com
Thu May 3 21:28:08 CEST 2012
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
03.05.2012 20:14, Ali Lown kirjoitti:
> I am trying to use gpg-agent for my ssh keys as well as my gpg
> keys, but am unable to add my 8192 bit ssh key to the agent.
>
> Agent log reports: "2012-05-03 17:48:02 gpg-agent[2190] ssh keys
> greater than 4096 bits are not supported"
>
> The limit appears to be arbitarily set in agent/command-ssh.c
> following a max mpi_data_size.
>
> Does anyone know why the limit is set at 4096 bits, and whether
> there are any plans for supporting SSH keys of lengths greater than
> 4096bit in the gpg-agent?
>
> Thanks. Ali
>
> _______________________________________________ Gnupg-users mailing
> list Gnupg-users at gnupg.org
> http://lists.gnupg.org/mailman/listinfo/gnupg-users
Use SSH agent instead of GPG agent for ssh keys.
See the manual page "ssh-add" (and "ssh-agent"). The ssh-agent should
usually start when you login.
- --
Mika Suomalainen
gpg --keyserver pool.sks-keyservers.net --recv-keys 4DB53CFE82A46728
Key fingerprint = 24BC 1573 B8EE D666 D10A AA65 4DB5 3CFE 82A4 6728
Please don't toppost, if possible
https://wiki.debian.org/FAQsFromDebianUser#What_is_top-posting_.28and_why_shouldn.27t_I_do_it.29.3F
Please don't send HTML, if possible. It's possible with most of
clients, even with webmails, see:
https://wiki.debian.org/DebianMailingLists#HowTo_send_plain_text_emails_to_the_list
I use GPG/INLINE, because some mailing list programs modify the headers
of messages and this way make signature.asc files (PGP/MIME)
unverifiable. Please remove lines about beginning and ending GPG
signature blocks in your replies to messages, which are sent by me.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/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=6xJh
-----END PGP SIGNATURE-----
More information about the Gnupg-users
mailing list