It's not completely impossible that someone finds a shortcut to factor large numbers. Using the best known method, we'd all be dead long, long before anyone found the factors that made up your n. No mathematician currently alive or dead has published a way to factor such a large number in acceptable time. The reason why you don't have to worry: It's easy to find the factors of n when n = 21, but it's a lot harder when n is a number 4096 bits long. Your public key contains a large number n which basically is the product of two prime numbers, and if I find these two prime numbers, I can easily find your private key. The reason why it's not completely safe is because if I know your public key, I can, with a neat piece of mathematics, calculate your private key. No, but you can do it anyway without worries (lots of people do, just look at or ) Is it completely safe to publish an ssh public key? In many cases SSH Clients will not function if it is detected that the permissions of the Private key file are such that users other than you have read access. It is VERY bad if someone has gained access to your private key. It also means that they can sign things on your behalf. ![]() If someone has accessed your private key, they have the ability to access any device or encrypted file that was protected with your public key. The exact opposite is true of Private Keys which should be secured at all times and never given to a third party or exchanged via email without encrypting them. "key": "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQC5tPV481acCZ5wm2E15gXkVRaKCE3lic/O8licyzW+eDE9rPpG4rHRRH9K2ENmstUh5nLEenb0nNhEGnsf3pIJRZ07JXwv16+lsJBSS8+YiWeMBlwo+JNaxwSyUlYUgl1ruogr0nR0KBqsYSWXuG0s2jm2IOV+0B/0fzDR/tiLFLj50+iJ9qCDSk/8fAsXz2xG39KcUcxmCbDXb/qSdESWaZc+pafNRiCcVNfMkKeDViWlzI4VkiTcfVCraHUuYx4jgOBB526dRWSDG9bLchwlJiopgT+k4X/TNe2l01DPwYetwLvY6V8rcPrjjJL8ifRTMSof1zRIoBgJZhRzWc1D" "key": "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDraswAp7EbMwyYTzOwnSrsmr3nNMDaDf4e2YVaehLc9w6KN2ommomXZO8/V9N3yINNveGqrcVc9m2NTm04iILJUKd9o25ns8QIG6XSCt9SVx/Xw1J/SXfIWUKuEe0SgmIwVwkk8jetfG/Z7giSiU3dxxC4V9lHQCFgKOKBWGpNbINmqtmBWncX3HJKeXrpSddoePbZZ84IEFr4CWUlqoXyphpxqzpfA9sRpVTtyBPcUSj68j4+gKgEQN65G6LXys3q8BiwWxucci6s34vp4L8jKn7uYh26vLuT1oIbODJphCmpvMH+ABPkNQcFBk4rRLpCEAsoAhmvTk/NjnfZM+nd" So not only is it safe to publish it, it is intended to be this way. In each case, as part of HTTPS the site gives you their public key. To drive this point home, think back to every HTTPS website you have ever visited. ![]() Private Keys are secret, they should only be accessible to the owner of said private key. Public Keys are designed for sharing, read access to and or publishing a public key is fine
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |