Where did the -des flag in RSA keygen instructions come from?


I was looking at the RSA encryption feature and noticed in the feature announcement instructions that it says to run openssl genrsa -des to generate the private key. As far as I can see, this “encrypts” the private key using 56-bit DES, which has been broken since the 1990s. Where did this command come from? How did it make it into the instructions like this? Surely this should say -aes256 (or at least -aes128)?


1 Like

You’re right. I wasn’t paying attention to this when copying the two commands from some tutorial elsewhere. I’ve fixed the instructions.