Programmer Humor

19557 readers

840 users here now

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

Keep content in english
No advertisements
Posts must be related to programming or programmer topics

founded 1 year ago

MODERATORS

Feyter@programming.dev

anzo@programming.dev

BurningTurtle@programming.dev

pylapp@programming.dev

324

cat (lemmy.zip)

submitted 2 weeks ago by Maven@lemmy.zip to c/programmer_humor@programming.dev

22 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] dan@upvote.au 21 points 2 weeks ago (9 children)

id_rsa shouldn't exist any more.

[–] Scoopta@programming.dev 11 points 2 weeks ago (3 children)

Fact of the matter is RSA is perfectly secure still...and ECDSA/ED25519 should also be extinct given the rising need for post quantum cryptography

[–] Supermariofan67@programming.dev 16 points 2 weeks ago (2 children)

The problem is not the RSA math itself but that it is both extremely slow and implementing it is particularly susceptible to bugs and side channel attacks https://blog.trailofbits.com/2019/07/08/fuck-rsa/

[–] Scoopta@programming.dev 1 points 2 weeks ago (1 children)

Most of the situations I encounter RSA are in projects where I hope RSA is implemented correctly. I have a lot of Let's Encrypt certs that are still RSA and my main SSH keys are still RSA. All of these were generated quite some time ago. I understand the problem with projects that implement it incorrectly but I'd hope OpenSSH and certbot aren't those projects 😥

[–] computergeek125@lemmy.world 1 points 2 weeks ago

For Certbot, I think it's even further up the chain - OpenSSL. And if you're installing it to Apache or Nginx, its probably just OpenSSL again.

load more comments (5 replies)