[CentOS] Re: 2 SSH questions

Wed Jan 11 06:42:14 UTC 2006
Robert Moskowitz <rgm at htt-consult.com>

At 09:39 PM 1/10/2006, Keith Morse wrote:
>Chris Weisiger wrote
> >>
> > I would recommend....AND it is recommended to create RSA keys instead
> > of DSA keys for ssh key-pairs
> >
>
>If I may ask, why is that ?

It has a bit to do with how DSA (and DSS) works compared to RSA.

I would have to dig out some old papers by the likes of Schneier, 
Demmings, Fergeson (I knwo I am mispelting all of their names! But, 
hey, I AM dyslectic) to put together a reasonable case.

We (the IETF) did DSA and DSS/DH more because we had to until the RSA 
patent expired.