On Tue, Jan 20, 2026 at 10:17 AM Ben Koenig via PLUG <[email protected]> wrote: > > Hey all, > > This is probably a pretty basic question that I could look up elsewhere, but > in the interest of completeness I thought I'd ask here. > > Does anyone know (or have a link to) the current "best practices" for > creating a GPG or SSH key? I know this kind of thing tends to evolve over > time so I figured the start of 2026 was a good time to ask.
I'm not going to claim best practices, but on new machines, I typically generate both RSA and ed25519 SSH keys, and distribute both of them for authorized_keys, where appropriate. As far as PGP/GPG keys, yubikeys only support RSA as of the last time I checked (Edit: this contradicts me: https://zach.codes/p/ultimate-yubikey-setup-guide). -- Russell Senior [email protected]
