Disallow encrypting to ssh-rsa keys smaller than 2048 bits

FiloSottile / age

A simple, modern and secure encryption tool (and Go library) with small explicit keys, no config options, and UNIX-style composability.

https://age-encryption.org

BSD 3-Clause "New" or "Revised" License

15.95k stars 482 forks source link

Closed FiloSottile closed 3 years ago

FiloSottile commented 3 years ago

I think using the ssh-rsa support with small keys is the only non-plugin way to end up encrypting with a weak algorithm.

No reason we should allow that. I've updated the spec accordingly.

/cc @str4d