Questions tagged [rsa]
The rsa tag has no usage guidance.
190
questions
555
votes
32
answers
1.1m
views
How do I tell Git for Windows where to find my private RSA key?
My Git setup runs fine on Linux, but when I try to set things up under Windows (using Git for Windows and TortoiseGit), I don't know where to put my private SSH key (or, better still, how to tell ssh ...
205
votes
3
answers
113k
views
Possible to change email address in keypair?
I've created an RSA keypair that I used for SSH, and it includes my email address. (At the end of the public key.)
I've now changed my email address.
Is it possible to change the email address on ...
150
votes
5
answers
332k
views
How to check if an RSA public / private key pair match
I have two files, id_rsa and id_rsa.pub. What command can be used to validate if they are a valid pair?
140
votes
35
answers
531k
views
SSH Suddenly returning Invalid format
So a while ago I set up a server on AWS, and used their generated SSH key. I saved the key to Lastpass, and have successfully retrieved it from there before, and got it working. However, after trying ...
107
votes
5
answers
39k
views
SSH keypair generation: RSA or DSA?
SSH supports two signature algorithms for key pairs: RSA and DSA. Which is preferred, if any? For RSA, what is the minimum acceptable key length?
96
votes
1
answer
179k
views
How do I validate an RSA SSH public key file (id_rsa.pub)?
Is there a command I can use to verify the public key (id_rsa.pub), just the format only.
Sometimes I have added a new linebreak, sometimes the file missed the ssh-rsa prefix, so is there a command ...
71
votes
6
answers
215k
views
How to remove strict RSA key checking in SSH and what's the problem here?
I have a Linux server that whenever I connect it shows me the message that changed the SSH host key:
$ ssh root@host1
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: ...
50
votes
3
answers
245k
views
How to use openssh sftp command with a RSA/DSA key specified from the command line
The Openssh ssh and scp command provied an -i command line option to specify the path to the RSA/DSA key to be used for authentication.
Looking at the sftp man pages I was not able to find a way to ...
40
votes
9
answers
108k
views
Auto accept rsa key fingerprint from command line
I've tried yes | ssh [email protected] to try to accept the RSA key fingerprint, but am still prompted if I'm sure I want to connect. Is there a way to make this automatic?
22
votes
4
answers
25k
views
How do I import a RSA SSH key into GPG as the _primary_ private key?
I currently have a SSH key that I've used for a while and I'd like to start using GnuPG with a new keyring. However, given that I've used my key for ages, I would like to still use that key in GPG as ...
20
votes
11
answers
43k
views
OpenVPN easy-rsa build-key automation?
I have a lot of keys to generate for my clients VPN server. Whenever I use easy-rsa to generate the keys like this:
./build-key client1
There is some output with a series of questions. The questions ...
18
votes
5
answers
22k
views
Using PGP keys for SSH
I use a 4096 byte RSA PGP key; since SSH also uses the RSA standard, is it at all possible to use the PGP key as an SSH key without installing additional software on the server (and as little as ...
17
votes
7
answers
47k
views
SSH connection asks for password although key is accepted
I'm getting prompted for a password even though it looks like my SSH key is accepted. As far as I can tell, the line "Server accepts key: pkalg ssh-rsa blen 277" in the logs below mean my key is ...
15
votes
4
answers
26k
views
How to set up my own full-featured certificate authority?
I'd like to set up a certificate authority, which I can then import to all the company's browsers and systems to get rid of all those nasty client warnings when using HTTPS or SSL.
14
votes
2
answers
11k
views
What do the different parts of "known_hosts" entries mean?
Below is an known_hosts entry. The part that starts with ssh-rsa and goes to the end is a public key. What are the other parts (the characters before ssh-rsa)?
|1|KnbIIJIPrL/1p7ofUV74sK+j/Gc=|...
14
votes
1
answer
7k
views
User@host in a SSH-RSA public key
What role does the user@host that often appears at the end of a public ssh-rsa key play? Is it necessary? Does if serve any purpose in the authentication, or is it simply a record of who and where ...
12
votes
2
answers
66k
views
Cannot decrypt private key eventhough I know passphrase
I think my problem comes down to the fact something is wrong with the key but I cannot just decrypt it, for further investigation, with out parsing it. But I am not sure.
I am trying to use standard ...
11
votes
1
answer
26k
views
ssh - Why isn't it trying my private key? [closed]
I'm trying to connect to a remote SSH server using a private key at ~/.ssh/id_rsa. When I ssh -v to the server I get the following:
...
debug1: Authentications that can continue: publickey
debug1: ...
10
votes
10
answers
39k
views
sshd shuts down with "No supported key exchange algorithms" error
sshd
$ /usr/sbin/sshd -f testconfig -p 22025 -d
debug1: sshd version OpenSSH_5.2p1
debug1: private host key: #0 type 0 RSA1
debug1: read PEM private key done: type RSA
debug1: private host key: #1 ...
10
votes
4
answers
11k
views
OpenSSH : Key-based authorization, maximum key length
I'am using Putty on windows with key-based authentication to access some of mine servers.
It works totally fine with ~3700-bit key, but with ~17000-bit key it thinks for like 20 seconds on client-...
10
votes
1
answer
8k
views
ssh: id_rsa doesn't work, but if I rename it, it works
I have this id_rsa in my ~/.ssh folder. But it just doesn't authenticate. If I copy it and rename it to anything not id_rsa, it works.
[qfan@mycomputer .ssh]$ ls -al id_rsa id_rsa_good
-rw------- 1 ...
9
votes
2
answers
4k
views
SSH keys: why is id_rsa larger than id_rsa.pub?
My private key (~/.ssh/id_rsa) is a 1766-byte file, but my public key (~/.ssh/id_rsa.pub) is only 396 bytes in length. Why the massive difference? Is it because the private key is encrypted using AES? ...
9
votes
1
answer
12k
views
SSH keys: ed25519 vs RSA performance demystified
It is claimed that ed25519 keys are better than RSA, in terms of security and performance. In terms of security, I understand that 4096 bits RSA keys are practically unbreakable for the foreseable ...
9
votes
4
answers
16k
views
What does this ssh error mean?
This is my last resort. I've been trying to figure out the problem here for hours.
Here's the deal: I have copied my private key from machine #1 onto machine #2. Machine #1 is able to connect via ...
8
votes
5
answers
29k
views
Recover an SSH private key?
I have an RSA key (generated by PuTTYgen) that's set up for logging in to a bunch of machines via SSH. Or rather, i HAD such a key. (The computer it was on crashed, to the point that a reinstall of ...
8
votes
2
answers
8k
views
Is disabling password login for SSH the same as deleting the password for all users?
I have a cloud server with only a root user. I SSH to it using RSA keys only. To make it more secure, I wanted to disable the password feature. I know that this can be done by editing the /etc/ssh/...
8
votes
4
answers
16k
views
The RSA key container could not be opened. Windows Server 2008 R2
I am setting up a second asp.net site on our Windows 2008 R2 server. We use a RSA Key Container to encrypt our connection strings. I created a new Application Pool with all the same settings as our ...
7
votes
1
answer
8k
views
Is the ssh key name a part of the authentication? [closed]
The ssh public keys in authorized_hosts have three parts - a type, the key and a name. For example, an rsa key might look like:
ssh-rsa gn29JyDdiyLFlggptrCxgzS6diAF6o94Dtg<abbreviated>oF9grbm7g+...
7
votes
6
answers
40k
views
SSH login using public key failed
On localhost running sshd service. Created two pairs of rsa keys for root and user1 using ssh-keygen. Copied from root/.ssh/id_rsa.pub to user1/.ssh/id_rsa.pub. Changed permissions to 600. Tried ssh -...
7
votes
3
answers
34k
views
SSH No Matching Host Key Type Found
I have two servers,
S1: My machine, Windows 8, OpenSSH 8.8p1, OpenSSL 1.1.11 2021-08-24,
S2: A Remote Server, Linux, Open SSH 5.3p1, OpenSSL 1.0.1e-fips 2013-02-11.
The message I have trying to ...
7
votes
2
answers
24k
views
Unable to login(ssh) with public private key pair
I am unable to login with public private key pairs. I do have access with a password. Following are the logs on server side and on the client side. Why am I unable to login?
type=CRYPTO_KEY_USER msg=...
7
votes
2
answers
783
views
Same RSA key on multiple PCs
Can I use my RSA private key on multiple computers i.e. my desktop and laptop. Or do I have to create a unique key for each computer I own, and add their respective public keys to necessary servers/...
7
votes
1
answer
8k
views
RSA key, github keeps asking for my password
Okay folks, noob RSA question here.
I have a production server, and I've generated an rsa key there. I've then taken the public key (id_rsa.pub) and given that to github, as a deploy key I believe.
...
7
votes
1
answer
6k
views
If I get a certificate signed for ECDSA will older browsers be able to use RSA?
I'm looking into using ECDHE-ECDSA and there are a lot of great articles on why (https://hynek.me/articles/hardening-your-web-servers-ssl-ciphers/) and (http://blog.cloudflare.com/ecdsa-the-digital-...
6
votes
4
answers
13k
views
OpenSSH server Authentication refused
I am running a Linux version 2.6.27-vpac2 on a PXA270 platform (armv5tel)
I have a version of OpenSSH 3.8.1 p1 (Debian-8.sarge.4) trying to get to run on it.
I have run the sshd in -ddd format to ...
6
votes
2
answers
2k
views
How To Organize and Use Multiple RSA Keys On Local Machine?
I have Server_A, Server_B, and Server_C.
I want to generate unique authentication keys for each, and organize them on my local machine running Lion like so:
Put server_A keys in Users/username/.ssh/...
6
votes
1
answer
20k
views
How to convert DER formatted public key file to PEM form
I need to use the PEM formatted public key for some purpose, but not finding the command which can convert DER formatted public key to PEM formatted public key.
The command I have used -
openssl ...
5
votes
2
answers
46k
views
Can't allow users to log in via SSH (Bash, OpenSSH, CentOS 6.5)
I am running a CentOS 6.5 machine remotely via SSH. I use RSA keys and have disabled password authentication. The problem that I am having is that whenever I add a new user and want him/her to log in ...
5
votes
1
answer
23k
views
How to export private key? (GnuPG) [closed]
I have successfully created GnuPG public/private key pair using RSA and RSA algorithm. How can I export a public key and private key in the form of file with the .asc extension?
5
votes
1
answer
3k
views
Is there a way to see which groups/users have access to an RSA key container?
I used aspnet_regiis to create an RSA key container (machine container).
I want to secure it and I know I can use the -pa and -pr commands to specify access. But is there a way to see which ...
5
votes
2
answers
367
views
When routers communicate with HTTPS, how is their identity confirmed?
There's something I don't understand. Possibly I have some misunderstanding about how HTTPS works.
I heard that some wireless routers allow the user to access the administration page with HTTPS (...
5
votes
4
answers
936
views
Any point using Denyhosts for SSH when only RSA key logins are allowed anyway?
Right, so if I can only SSH into my box by having the appropriate RSA keys configured, is there any point in using Denyhosts for SSH as well? Or is Denyhosts only looking at keyboard-interactive / ...
5
votes
1
answer
14k
views
Pros / cons of using password-less OpenVPN client keys
I'm setting up an OpenVPN server for my organization, and I'm reading up on the different ways that the client side keys work. I'm still a little unfamiliar with all of the concepts behind these ...
5
votes
1
answer
3k
views
Keeping track of SSH private keys without comments
SSH public keys support comments (which simply consist of text appended to the end of the key), which makes it easy to identify an otherwise unidentifiable id_rsa.pub file. You can use the comment to ...
5
votes
4
answers
4k
views
Cisco ASA user authentication options - OpenID, public RSA sig, others?
My organization has a Cisco ASA 5510 which I have made act as a firewall/gateway for one of our offices. Most resources a remote user would come looking for exist inside. I've implemented the usual ...
4
votes
2
answers
26k
views
How to allow password authentication OR key authentication on CentOS 5.7?
is it possible to enable the use of password authentication or key authentication in CentOS 5.7? All I can find is setting PasswordAuthentication to no which forces the use of keys...
Thanks
4
votes
2
answers
16k
views
Create a public private key pair for certificate in IIS
I need to create a public/private key pair for a certificate request. I would like to use IIS. Once the certificate is signed I will be distributing it to multiple servers and therefor will need the ...
4
votes
4
answers
18k
views
SSH login without password
I know that you can use ssh-keygen to generate a public/private key pair. Then you can install the public key on a remote server. You can then login without supplying a password. I haven't been ...
4
votes
1
answer
15k
views
Convert rsa to ppk file in MAC
I want to convert the id_rsa file to ppk file. I found there are many websites teaching "how to convert ppk to rsa in MAC" but not vice versa. Is there a way to convert rsa private key to ppk for ...
4
votes
1
answer
3k
views
Why won't my SSH keys forward properly?
I'm trying to ssh from my machine to another machine and from there to a third machine. When I do it manually, it works like this:
localhost$ scp ~/.ssh/id_rsa [email protected]:.
...