SSH Key Generator (CLI Commands)

Generate secure local SSH key creation commands and authorized_keys instructions.

Only applies to RSA. Use 4096 for modern security.

Helps identify the key in GitHub, GitLab, or authorized_keys files.

Paste your PUBLIC key here. DO NOT PASTE PRIVATE KEYS.

ssh-commands.sh
1

SSH Key Generation Security Protocol

SSH Private Keys are extremely sensitive. Anyone who gains access to your private key can impersonate you and access any servers or Git repositories that trust that key.

Why We Don't Generate Private Keys in the Browser

To guarantee 100% security and zero trust, this tool does not generate or process private keys. Instead, we generate the exact ssh-keygen CLI commands you should run locally on your own machine.

This ensures:

  • Your private key never touches a browser environment.
  • Your private key is never exposed to potentially malicious browser extensions.
  • Your key is generated using your operating system's native, hardened OpenSSH implementation.
  • Ed25519 vs RSA

  • Ed25519: (Recommended) A modern public-key algorithm based on Elliptic Curve Cryptography. It is faster, smaller, and more secure than RSA.
  • RSA: An older standard. If you must use RSA (e.g., for legacy systems that don't support Ed25519), ensure you use a key size of at least 4096 bits.
  • Securing Your Key

    When running the ssh-keygen command, you will be prompted to enter a passphrase. Always set a strong passphrase! If someone steals your laptop or copies your private key file, the passphrase is the only thing preventing them from using it.