jlduran
commented
2 years ago Note to self: FreeBSD 12.3-RELEASE & 13.1-RELEASE, when released should generate a 3072-bit by default, hence making this PR less relevant.
Closed jlduran closed 1 year ago
jlduran
commented
2 years ago Note to self: FreeBSD 12.3-RELEASE & 13.1-RELEASE, when released should generate a 3072-bit by default, hence making this PR less relevant.
The command
service sshd keygendoes not take into consideration the option-b, which specifies the number of bits in the key to create.For RSA, 2048-bit keys are generated by default on FreeBSD 12.2 and 13.0 (OpenSSH 7.9), and 3072-bit on FreeBSD 14.0 (OpenSSH 8.7).
Fix it by using the full command, just like the other guides.