Stefan Pfetzing <[EMAIL PROTECTED]> writes: > lsh-server fails to create the hostkey, possibly because the lsh-keygen > options are changed. --nist-level now is the length in bit of the rsa > key.
I think it's because lsh-keygen defaults to RSA keys now; in earlier versions DSA keys were the default (and before that, DSA was the only supported type). The DSA specific long option --nist-level seemed like a good idea at the time, but I'm sorry it's poor user interface now. Anyway, if you don't want to use the default key size, I think it's best to use *both* type and length options, e.g. lsh-keygen --server -a rsa -l 2048 or lsh-keygen --server -a dsa --nist-level 8 Regards, /Niels
