On Tue, Jan 23, 2018 at 09:52:42PM +0000, Ian Jackson wrote: > $ ssh-keygen -t rsa1 -b 2048 -f t > Generating public/private rsa1 key pair. > t already exists. > Overwrite (y/n)? y > Enter passphrase (empty for no passphrase): > Enter same passphrase again: > Saving key "t" failed: unknown or unsupported key type > $ > > I guess this is a consequence of dropping SSH v1 protocol support. > > This is inconvenient for me as I have a program which uses RSA, relies > on an external key generator, and understands the ssh v1 key format. > So ideally I would like this facility to be restored.
You'll need to install openssh-client-ssh1 and use ssh-keygen1, which I've preserved for this kind of purpose. I'm afraid that the probability of this facility being reintroduced in modern OpenSSH approaches zero. > Failing that, I would like ssh-keygen to say "never heard of that key > type" rather than going ahead and generating a perfectly good RSA key > before failing to marshal it up into a key file. I agree that this would be a good idea. If you have time then it would speed things up if you could file this upstream at bugzilla.mindrot.org. -- Colin Watson [cjwat...@debian.org]