Archives
/
algo
mirror of https://github.com/trailofbits/algo
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
master
dependabot/pip/ansible-9.4.0
dependabot/github_actions/actions/setup-python-5.1.0
fix/14704
dependabot/pip/jinja2-approx-eq-3.1.3
v1.1
v1.0
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
algo/playbooks
History
Disconnect3d c9352a1801
cloud-pre.yml: use 4096 bits for ssh rsa key (#14674) 
The ssh-key we generated used 2048 bits while even openssh's ssh-keygen defaults to 3072 nowadays [0].

While RSA-2048 is probably ok (?) and what NIST recommends for keys until around 2030, its probably better to switch to more bits.

This is also just a temporary solution as we should also switch to ed25519.

Thanks to Dan M (@dmur1 or dan@hexarcana.ch) for pointing this out.

[0] 19d3ee2f3a/ssh-keygen.c (L83)
 		5 months ago
..
tmpfs Ansible upgrade 6.1 (#14500) 2 years ago
cloud-post.yml Ansible upgrade 6.1 (#14500) 2 years ago
cloud-pre.yml cloud-pre.yml: use 4096 bits for ssh rsa key (#14674) 5 months ago
rescue.yml Refactoring, Linting and additional tests (#1397) 5 years ago