Skip to Content [alt-c]


In reply to It's Now Possible To Sign Arbitrary Data With Your SSH Keys

Anonymous on 2023-10-24 at 15:36:

It's good that OpenSSH team added the signing but I wouldn't use it: - Inconvinient command line. Why the signing tool is called ssh-KEYGEN? Arguments are difficult to understand. The allowed signers file should be juset created somewhere in a default location. - Again as with signify the OpenSSH team decided to use own format instead of standard PKCS#7. Extensions of signatires aren't specified. Here you used .sig but this is already used by PGP and other programs like Kleopatra will be unable to open it. The cryptogtpgaphy needs a wide adoption but here fragmentaions only increased. - namespaces is somemthing really weird and just won't be used in wild.


Post a Reply

Your comment will be public. To contact me privately, email me. Please keep your comment polite, on-topic, and comprehensible. Your comment may be held for moderation before being published.

(Optional; will be published)

(Optional; will not be published)

(Optional; will be published)

  • Blank lines separate paragraphs.
  • Lines starting with > are indented as block quotes.
  • Lines starting with two spaces are reproduced verbatim (good for code).
  • Text surrounded by *asterisks* is italicized.
  • Text surrounded by `back ticks` is monospaced.
  • URLs are turned into links.
  • Use the Preview button to check your formatting.