Mercurial > dropbear
comparison dropbear.8 @ 1659:d32bcb5c557d
Add Ed25519 support (#91)
* Add support for Ed25519 as a public key type
Ed25519 is a elliptic curve signature scheme that offers
better security than ECDSA and DSA and good performance. It may be
used for both user and host keys.
OpenSSH key import and fuzzer are not supported yet.
Initially inspired by Peter Szabo.
* Add curve25519 and ed25519 fuzzers
* Add import and export of Ed25519 keys
| author | Vladislav Grishenko <themiron@users.noreply.github.com> |
|---|---|
| date | Wed, 11 Mar 2020 21:09:45 +0500 |
| parents | 2e9b6d9c7e7d |
| children | 94323a20e572 |
comparison
equal
deleted
inserted
replaced
| 1658:7402218141d4 | 1659:d32bcb5c557d |
|---|---|
| 105 | 105 |
| 106 .TP | 106 .TP |
| 107 Authorized Keys | 107 Authorized Keys |
| 108 | 108 |
| 109 ~/.ssh/authorized_keys can be set up to allow remote login with a RSA, | 109 ~/.ssh/authorized_keys can be set up to allow remote login with a RSA, |
| 110 ECDSA, or DSS | 110 ECDSA, Ed25519 or DSS |
| 111 key. Each line is of the form | 111 key. Each line is of the form |
| 112 .TP | 112 .TP |
| 113 [restrictions] ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIgAsp... [comment] | 113 [restrictions] ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIgAsp... [comment] |
| 114 | 114 |
| 115 and can be extracted from a Dropbear private host key with "dropbearkey -y". This is the same format as used by OpenSSH, though the restrictions are a subset (keys with unknown restrictions are ignored). | 115 and can be extracted from a Dropbear private host key with "dropbearkey -y". This is the same format as used by OpenSSH, though the restrictions are a subset (keys with unknown restrictions are ignored). |
| 144 | 144 |
| 145 .TP | 145 .TP |
| 146 Host Key Files | 146 Host Key Files |
| 147 | 147 |
| 148 Host key files are read at startup from a standard location, by default | 148 Host key files are read at startup from a standard location, by default |
| 149 /etc/dropbear/dropbear_dss_host_key, /etc/dropbear/dropbear_rsa_host_key, and | 149 /etc/dropbear/dropbear_dss_host_key, /etc/dropbear/dropbear_rsa_host_key, |
| 150 /etc/dropbear/dropbear_ecdsa_host_key | 150 /etc/dropbear/dropbear_ecdsa_host_key and /etc/dropbear/dropbear_ed25519_host_key |
| 151 | 151 |
| 152 If the -r command line option is specified the default files are not loaded. | 152 If the -r command line option is specified the default files are not loaded. |
| 153 Host key files are of the form generated by dropbearkey. | 153 Host key files are of the form generated by dropbearkey. |
| 154 The -R option can be used to automatically generate keys | 154 The -R option can be used to automatically generate keys |
| 155 in the default location - keys will be generated after startup when the first | 155 in the default location - keys will be generated after startup when the first |