Using WebGUI + SFTP + encrypted private key

web-ui

#1

I like to use the webgui combined with a storage which uses sftp & certificates. my certificate is password protected. Can the webgui manage this?
I only have one password field and this looks like that it is meant for the storage itself and not for the certificate.

I try to generate an SSH key with puttygen on windows.
Which parameters should be used?

grafik


#2

According to the v1 web edition release notes, this was recently added.

Basically, use the Password field for the passphrase protecting the key file (otherwise, that Password field is for the sftp password when not using a key file - hence it doubles up as the passphrase, as the two are mutually exclusive).

As for parameters, I’d personally stick with RSA 2048 (left-most radio button).

SSH-1 (RSA) is very weak and should be considered broken. DSA is even weaker and definitely broken. :slight_smile:

ECDSA and ED25519 are new - I believe the latter is the strongest and has other benefits - so long as your SSH server supports it, you may have to tinker with the /etc/sshd_config on the server to get it working. RSA 2048 should just work, and is pretty secure.


#3

Thanks for you feedback.