ui_puttygen » Revisions »

Differences

This shows you the differences between the selected revisions of the page.

2021-09-23 2021-12-06
Restored revision 1624019268. Undoing revisions 1632409666, 1632409700. (martin) (hidden) 5.20 Removed support for SSH-1 (martin)
Line 38: Line 38:
  * An EdDSA key (Edwards-curve DSA, another elliptic curve algorithm) for use with the %%SSH-%%2 protocol.   * An EdDSA key (Edwards-curve DSA, another elliptic curve algorithm) for use with the %%SSH-%%2 protocol.
-PuTTYgen can also generate an %%RSA%% key suitable for use with the old %%SSH-1%% protocol (which only supports %%RSA%%); for this, you need to select the //%%SSH-1%% (%%RSA%%)// option. Since the %%SSH-1%% protocol is no longer considered secure, it's rare to need this option.+PuTTYgen can also generate an %%RSA%% key suitable for use with the old %%SSH-1%% protocol (which only supports %%RSA%%). But SSH-1 is no longer supported by WinSCP.
===== [[size]] Selecting the Size (Strength) of the Key ===== ===== [[size]] Selecting the Size (Strength) of the Key =====
Line 133: Line 133:
You will then probably want to copy the public key file to your SSH server machine. You will then probably want to copy the public key file to your SSH server machine.
- 
-If you use this option with an SSH-1 key, the file PuTTYgen saves will contain exactly the same text that appears in the //Public key for pasting// box. This is the only existing standard for SSH-1 public keys. 
===== [[authorized_keys]] Public Key for Pasting into OpenSSH authorized_keys File ===== ===== [[authorized_keys]] Public Key for Pasting into OpenSSH authorized_keys File =====
-The OpenSSH server, among others, requires your public key to be given to it in a one-line format before it will accept authentication with your private key. (SSH-1 servers also used this method.)+The OpenSSH server, among others, requires your public key to be given to it in a one-line format before it will accept authentication with your private key.
The //Public key for pasting into OpenSSH authorized_keys file// gives the public-key data in the correct one-line format. The //Public key for pasting into OpenSSH authorized_keys file// gives the public-key data in the correct one-line format.
Line 191: Line 189:
For OpenSSH there are two options. Modern OpenSSH actually has two formats it uses for storing private keys. //Export OpenSSH key// will automatically choose the oldest format supported for the key type, for maximum backward compatibility with older versions of OpenSSH; for newer key types like Ed25519, it will use the newer format as that is the only legal option. If you have some specific reason for wanting to use OpenSSH's newer format even for RSA, DSA, or ECDSA keys, you can choose //Export OpenSSH key (force new file format)//. For OpenSSH there are two options. Modern OpenSSH actually has two formats it uses for storing private keys. //Export OpenSSH key// will automatically choose the oldest format supported for the key type, for maximum backward compatibility with older versions of OpenSSH; for newer key types like Ed25519, it will use the newer format as that is the only legal option. If you have some specific reason for wanting to use OpenSSH's newer format even for RSA, DSA, or ECDSA keys, you can choose //Export OpenSSH key (force new file format)//.
- 
-Most clients for the older SSH-1 protocol use a standard format for storing private keys on disk. PuTTY uses this format as well; so if you have generated an %%SSH-1%% private key using OpenSSH or ssh.com's client, you can use it with WinSCP, and vice versa. Hence, the export options are not available if you have generated an %%SSH-1%% key.((&puttydoccite)) 
You can also use WinSCP ''[[commandline#keygen|/keygen]]'' command-line switch to convert the private key from other formats. You can also use WinSCP ''[[commandline#keygen|/keygen]]'' command-line switch to convert the private key from other formats.

Last modified: by martin

Documentation

Support

Associations

Follow Us