@surma I’m not sure about the encryption strength itself, but there are certainly other best practices you can use to mitigate the risk of private key disclosure, such as using unique keys for every user on every machine, and scoping a given key’s privileges via the authorized_keys file: superuser.com/a/261394

Mastodon

Server run by the main developers of the project 🐘 It is not focused on any particular niche interest - everyone is welcome as long as you follow our code of conduct!