2446 – Provide an option to show SHA256 fingerprints in a more pronouncable format

Bug 2446 - Provide an option to show SHA256 fingerprints in a more pronouncable format

Summary: Provide an option to show SHA256 fingerprints in a more pronouncable format

Status:	CLOSED WONTFIX

Alias:	None

Product:	Portable OpenSSH
Classification:	Unclassified
Component:	ssh-keygen (show other bugs)
Version:	7.0p1
Hardware:	All All

Importance:	P5 enhancement
Assignee:	Assigned to nobody

URL:
Keywords:

Depends on:
Blocks:

Reported:	2015-08-20 13:50 AEST by Daniel Franke
Modified:	2016-08-02 10:40 AEST (History)
CC List:	1 user (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Daniel Franke 2015-08-20 13:50:41 AEST

MD5 fingerprints of SSH keys are displayed as colon-separated hex strings, which is a convenient format for reading them over the phone. SHA256 fingerprints are displayed as base64, which is much more awkward because the reader has to specify whether every letter is upper or lower case, and the absence of grouping characters makes it easy to lose one's place while reading. Please provide a flag to display them in an alternative format such as hex, base32, or base36, broken into reasonable groups.

Comment 1 Damien Miller 2015-09-04 13:44:14 AEST

I don't want to add more options for fingerprints. If you're comparing fingerprints verbally, you can quite safely ignore the case.

Ignoring case loses at most 1 of 256 bits of uniqueness, so it's still very safe.

Comment 2 Damien Miller 2016-08-02 10:40:40 AEST

Close all resolved bugs after 7.3p1 release