Displaying 1 result from an estimated 1 matches for "test_rsa_key".
Did you mean:
host_rsa_key
2014 Jul 25
1
improving passphrase protected private keys
...as a salt)."
2. "Take the MD5 hash of the resulting string (once)."
So my proposal is, to alter this
by using PKCS 8 as defined in RFC 5208
as is described in the above article.
This currently works already by converting
your key manually:
openssl pkcs8 -topk8 -v2 des3 \
-in test_rsa_key.old -passin 'pass:super secret passphrase' \
-out test_rsa_key -passout 'pass:super secret passphrase'
I didn't find any contradicting documentation
or stuff inside the SSH RFCs why this is not the default
yet.
I know this is just a little hardening
and just covers cases w...