Follow

Thinking out loud for a sec:
In theory I can edit an SSH private key and create a new public key from it using ssh-keygen -y. I know depending on my edit I may decrease entropy, but apart from that what speaks against making part of a private key read what I want?

@alinanorakari In the case of RSA, the private key is based on two prime numbers. If you edit the key, then the result will probably no longer satisfy this condition. Your software may reject the key, crash, or use the key as-is, which would make it much easier to crack.

@samgai I'm sure the redundancy doubles as plausibility check material

@alinanorakari
Apart from making it objectively less secure, nothing.

But it's like asking "if I don't care to live, is walking a tightrope between skyscrapers *really* that risky?"

The beginning statement more or less nullifies the question by negating the necessary context. If you don't care about life, nothing is risky.

If you don't care about maximizing entropy, everything is totally secure. Just don't worry about it.

@sunbearshaman please relax. I am always thinking about how to make fun parts for a digital scavenger hunt. Sadly the formats seem to be much more specific than I thought and contain very specific places for primes and exponents etc, so it seems to be off the table then anyway

Sign in to participate in the conversation
broken.graphics

This is where Alina Norakari resides. broken.graphics is a personal instance. If we know you, we trust you and you ask very nicely there might be a place for you on this instance.