Surely current best practice is obviously to use ssh-keygen's defaults? They're a reasonable compromise between security and performance. The defaults have changed in the past in response to changing circumstances, and will no doubt do so again when it becomes appropriate.
Surely current best practice is obviously to use ssh-keygen's defaults? They're a reasonable compromise between security and performance. The defaults have changed in the past in response to changing circumstances, and will no doubt do so again when it becomes appropriate.