this post was submitted on 26 Oct 2024
317 points (94.6% liked)

Programmer Humor

19434 readers
149 users here now

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

founded 1 year ago
MODERATORS
 
top 21 comments
sorted by: hot top controversial new old
[–] rikudou@lemmings.world 80 points 3 days ago (1 children)

Here you go!

~ $ cat ~/.ssh/id_rsa
cat: /data/data/com.termux/files/home/.ssh/id_rsa: No such file or directory
~ $ cat ~/.ssh/id_ed25519
cat: /data/data/com.termux/files/home/.ssh/id_ed25519: No such file or directory
[–] SatyrSack@feddit.org 9 points 3 days ago (2 children)

The first command works for me on Termux, but the second matches your output. Does this just mean you have not set up SSH?

[–] rikudou@lemmings.world 17 points 3 days ago (1 children)

I use ssh regularly, I just use a different key for each server. And thus I don't use the default name (id_rsa) because it doesn't make sense.

[–] thanks_shakey_snake@lemmy.ca 9 points 3 days ago (1 children)

Let's see the hackers figure that one out!

[–] rikudou@lemmings.world 5 points 2 days ago (1 children)
[–] thanks_shakey_snake@lemmy.ca 5 points 2 days ago

Damn okay well if the hackers are at that level I guess you're just screwed.

[–] kionite231@lemmy.ca 4 points 3 days ago (1 children)

No that means they haven't ran ssh-keygen yet

[–] idunnololz@lemmy.world 5 points 3 days ago

Or they did not use the default name. Devious D:

[–] blackstrat@lemmy.fwgx.uk 12 points 3 days ago

None of them...

ssh-keygen -t ecdsa -b 384

Then get it signed and use the certificate.

[–] dan@upvote.au 21 points 3 days ago (4 children)

id_rsa shouldn't exist any more.

[–] bjoern_tantau@swg-empire.de 37 points 3 days ago

If I had a nickel for every time I had to change my ssh key algorithm I'd have two nickels.

Which isn't much but it's concerning that it happened twice.

[–] friend_of_satan@lemmy.world 23 points 3 days ago* (last edited 3 days ago) (1 children)

A few days ago I was messing with my ubiquiti dream router and its ssh config option said the key should start with ssh-rsa 🙄

[–] dan@upvote.au 19 points 3 days ago (1 children)

It probably accepts other key types and it's just the UI that's outdated. I doubt they're using an SSH implementation other than Dropbear or OpenSSH, and both support ed25519.

[–] dbx12@programming.dev 2 points 2 days ago

Could be stupid input validation which requires ^ssh-rsa

[–] peeteer@feddit.org 2 points 2 days ago

Azure DevOps only allows you to use RSA keys. This caused a major outage in May (they switched from V1 to V2) :).

[–] Scoopta@programming.dev 11 points 3 days ago (1 children)

Fact of the matter is RSA is perfectly secure still...and ECDSA/ED25519 should also be extinct given the rising need for post quantum cryptography

[–] Supermariofan67@programming.dev 15 points 3 days ago (1 children)

The problem is not the RSA math itself but that it is both extremely slow and implementing it is particularly susceptible to bugs and side channel attacks https://blog.trailofbits.com/2019/07/08/fuck-rsa/

[–] Scoopta@programming.dev 1 points 2 days ago (1 children)

Most of the situations I encounter RSA are in projects where I hope RSA is implemented correctly. I have a lot of Let's Encrypt certs that are still RSA and my main SSH keys are still RSA. All of these were generated quite some time ago. I understand the problem with projects that implement it incorrectly but I'd hope OpenSSH and certbot aren't those projects 😥

[–] computergeek125@lemmy.world 1 points 1 day ago

For Certbot, I think it's even further up the chain - OpenSSL. And if you're installing it to Apache or Nginx, its probably just OpenSSL again.

[–] blackstrat@lemmy.fwgx.uk 4 points 3 days ago

SSH certificates are where its at.

[–] GammaGames@beehaw.org 3 points 3 days ago

cat ~/.ssh/id[TAB]