support for sk-ecdsa-sha2-nistp256@openssh.com keys for lxc

stephan@proxmox · Jul 21, 2021

during creation of an lxc over the gui interface it is possible to add public ssh-keys for authentication. While ssh-ed25519 keys are accepted, the red marking does not disappear for sk-ecdsa-sha2-nistp256@openssh.com keys.
U2F support was added with OpenSSH 8.2+. Are there further plans to implemed that key type (e.g. for solo/yubikey) in pve?

dcsapak · Jul 22, 2021

see https://bugzilla.proxmox.com/show_bug.cgi?id=3426

stephan@proxmox · Jul 22, 2021

Thanks for that link. They claim it should be fixed with pve v7 - but I am on 7.0-10 with OpenSSH_8.4p1 and the problem remains...

dcsapak · Jul 22, 2021

while the openssh version supports it, the patch (sent in june) for the gui is not commited yet: https://lists.proxmox.com/pipermail/pve-devel/2021-June/048503.html

stephan@proxmox · Jul 22, 2021

thanks very much for your explanations

Search

Search

support for sk-ecdsa-sha2-nistp256@openssh.com keys for lxc

stephan@proxmox

Member

dcsapak

Proxmox Staff Member

stephan@proxmox

Member

dcsapak

Proxmox Staff Member

stephan@proxmox

Member

We value your privacy