On 2020/10/08 15:40, Christian Weisgerber wrote:
> At this point, I don't know how many SSH servers are still out there
> that don't handle Ed25519. I still have an ECDSA key somewhere
> that I use to log into a machine that still runs... "OpenSSH_6.0p1
> Debian-4+deb7u7, OpenSSL 1.0.1t 3 May 201
On 2020-10-08, Eldritch wrote:
> With the recent change to prefer ed25519 keys on the server side [1]
> (unless I misunderstood what the change does), I think generating
This only changed the client's order of preference for the various
server key types. If a server doesn't offer an Ed25519 key
With the recent change to prefer ed25519 keys on the server side [1]
(unless I misunderstood what the change does), I think generating
ed25519 keys by default with ssh-keygen makes sense at this point.
Many users prefer the algorithm for its speed, small key size, lack of
trust in OpenSSL or RSA,