Thorsten Glaser
2023-Sep-04 14:05 UTC
[patch] ssh-keygen(1): generate Ed25519 keys when invoked without arguments
On Sun, 3 Sep 2023, Jim Knoble wrote:>Or is there a specific jurisdiction that claims that DJB's original >copyright somehow overrides that?The Berne Convention kinda does that (copyright is automatic), and in most of Europe, authors cannot voluntarily relinquish copyright so all works only enter into the Public Domain on the 1?? January that follows their 70?? anniversary of death. In contrast to works done by employees of the USA government (who successfully defended their copyright in a European court, whereas it?s in the PD in the USA automatically), however, with an explicit dedication like this DJB has no grounds to sue anyone over it. Yet, it?s, strictly speaking, code under copyright with no licence, which kinda violates ?Integrate good code from any source with acceptable licenses.? (http://www.openbsd.org/goals.html), plus, commercial violation of copyright is a felony in some legislations and possibly might not need the original author to sue. IANAL, TINLA, //mirabilos -- 15:41?<Lo-lan-do:#fusionforge> Somebody write a testsuite for helloworld :-)
Joseph S. Testa II
2023-Sep-04 14:43 UTC
[patch] ssh-keygen(1): generate Ed25519 keys when invoked without arguments
What I'm hearing in this thread is: "a minority of people on planet Earth have a problem with the open-source implementation of ED25519, but instead of letting that minority choose to re-implement it when/if they want to, the rest of the community needs to stall their progress in improving security." And isn't the ED25519 code is already there on their machine? So isn't that itself already a problem for that minority, regardless of whether or not its used? Either way, that minority can still use "-t rsa". I very often see IT personnel and developers simply use the default options for ssh-keygen. They just don't care/don't know to care. Switching the default to ED25519 would bring the equivalent security up from 112-bits to 128-bits (as 2048-bit RSA is equivalent to 112-bits of symmetric strength), which would be a nice improvement for the community at large. -- Joseph S. Testa II Founder & Principal Security Consultant Positron Security
Seemingly Similar Threads
- [patch] ssh-keygen(1): generate Ed25519 keys when invoked without arguments
- [patch] ssh-keygen(1): generate Ed25519 keys when invoked without arguments
- [Bug 3195] New: ssh-keygen unable to convert ED25519 public keys
- New key type (ed25519) and private key format
- [Bug 3202] New: Ed25519 key on HSM is not getting listed in ssh-add -l command