Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

When I run `ssh-keygen`, I can remember the options `-t rsa` or `-t dsa`. I simply cannot remember the flag `-t ed25519`. I have to look it up every time.

I just remember the flag as being vaguely similar the name of the monster robot from RoboCop.



> When I run `ssh-keygen`

As of OpenSSH 9.5 the default has changed, so you don't have to specify anything:

   * ssh-keygen(1): generate Ed25519 keys by default. Ed25519 public keys
     are very convenient due to their small size. Ed25519 keys are
     specified in RFC 8709 and OpenSSH has supported them since version 6.5
     (January 2014).
* https://www.openssh.com/txt/release-9.5


Oh wow, I didn't know that one! I still manually type `-t ed25519` from muscle memory, I guess I don't have to now


Use shell autocomplete. Even `bash-completion` suggests arguments for the key type these days:

  $ ssh-keygen -t <TAB>
  dsa   ecdsa   ecdsa-sk   ed25519   ed25519-sk  rsa
`-sk` is short for "security key" if memory serves me right, and is used with FIDO2 hardware tokens.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: