Re: 1024 bit key considered insecure (sshd)

From: ark@eltex.ru
Date: 08/29/02

• Next message: Perry E. Metzger: "Re: 1024 bit key considered insecure (sshd)"
• Previous message: soanm singh: "(no subject)"
• In reply to: Perry E. Metzger: "Re: 1024 bit key considered insecure (sshd)"
• Next in thread: Alexandr Kovalenko: "Re: 1024 bit key considered insecure (sshd)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

From: ark@eltex.ru
Date: Thu, 29 Aug 2002 14:48:23 +0400
To: perry@piermont.com

Keep in mind that there are people who *spend* money on custom designed
hardware and there are people who just have _access_ to custom designed
hardware that costs millions of dollars.

(i.e. in mid-90s when my hat was black i used to have access to data downloaded
from damn expensive military satellite sniffer, no kidding)

"Perry E. Metzger" <perry@piermont.com> said :

>
> Mipam <mipam@ibb.net> writes:
> > On Wed, Aug 28, 2002 at 10:57:55PM +0200, Matthias Buelow wrote:
> > > >and maybe we should update our rc scripts,
> > > >so that ssh-keygen generates at least 1280 Bit keys
> > >
> > > I think this is highly overrated and only of theoretical
> > > value for most *BSD users.
> >
> > I dont think its too much overrated and theoretical.
>
> I do. If someone with millions of dollars to spend on custom designed
> hardware wants to break into your computer, I assure you that
> increasing the size of your ssh keys will not stop them. Nor, for that
> matter, would the slow and tedious process of cracking your ssh keys
> be nearly as efficient as the more pragmatic alternatives.
>
> That said, those running on newer hardware can probably reasonably use
> larger keys if they wish.

                                     _ _ _ _ _ _ _
 {::} {::} {::} CU in Hell _| o |_ | | _|| | / _||_| |_ |_ |_
 (##) (##) (##) /Arkan#iD |_ o _||_| _||_| / _| | o |_||_||_|
 [||] [||] [||] Do i believe in Bible? Hell,man,i've seen one!

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

---

• Next message: Perry E. Metzger: "Re: 1024 bit key considered insecure (sshd)"
• Previous message: soanm singh: "(no subject)"
• In reply to: Perry E. Metzger: "Re: 1024 bit key considered insecure (sshd)"
• Next in thread: Alexandr Kovalenko: "Re: 1024 bit key considered insecure (sshd)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: More help wanted at OpenRPN.org ... On your hardware specs -- what size LCD ... did you have in mind? ... individual produces the hardware -- and makes a bit of money at ... (comp.sys.hp48) Re: [OT] Trusted Computing and GnuPG ... would we be able to store them in this TC chip? ... Why would you want to store your SSH keys on the chip, ... well as against the open source ideals. ... Then you need to consider hardware failures, ... (Debian-User) Re: 1024 bit key considered insecure (sshd) ... > increasing the size of your ssh keys will not stop them. ... the slower, the better, as a direct consequence of my last paragraph. ... those running on newer hardware can probably reasonably use ... (FreeBSD-Security) Re: 1024 bit key considered insecure (sshd) ... >>>and maybe we should update our rc scripts, ... increasing the size of your ssh keys will not stop them. ... matter, would the slow and tedious process of cracking your ssh keys ... those running on newer hardware can probably reasonably use ... (FreeBSD-Security) Re: Thoughts on the book: DEC is dead, long live DEC ... potential of connecting to the internet are ... Today many web sites are publishing API's to ... money as long as the assembly line runs and people are buying. ... hardware are in a different situation. ... (comp.os.vms)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > FreeBSD-Security  > 2002-08