Score:0

Understanding SSH Public Key Auth Ciphers

in flag

I have a technical recommendation for SSH that states we should only use the following algorithms for Public Key authentication. Unfortunately the guide does not mention the exact names of ciphers as they are used in OpenSSH an I have difficulty mapping the two.

Does anyone know what SSH ciphers the following might correlate with:

  • pgp-sign-dss2
  • ecdsa-sha2-*
  • x509v3-rsa2048-sha256 
  • x509v3-ecdsa-sha2-*

The ecdsa-sha2-* are pretty clear to me (mostly nistp stuff that I am not going to use), but I cannot find a mapping for the others (espeically the x509v3- ones.

Does anyone have a good resource on how to map those?

Score:0
cn flag

From my understanding you are asking which SSH ciphers algorithm those "options" are using, this might help you https://www.ssh.com/academy/ssh/sshd_config#:~:text=The%20ciphers%20supported%20in%20OpenSSH,%2Dpoly1305%40openssh.com%20.

I suppose that "x509v3-rsa2048-sha256" means that you are using the RSA Ciphers with a key lentgh of 2048 bit, hashing with sha256 (hash function) and x509v3 could simply be the version of the OpenSSL command you are using (https://www.openssl.org/docs/man1.1.1/man1/x509.html)

I hope it helps you.

Have a nice day.

:)

mangohost

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.