Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Bitbucket requires keys to be at least 1024 bits long, but mine is!

Lennart Geurts
Lennart Geurts July 20, 2017

So I want to set up SSH between sourcetree and my bitbucket account. In sourcetree I click create SSH key and in the pop up menu I create a key with default settings (wich is 1024 bits length). Then I go to bitbucket and set up SSH, it then asks me to copy paste the key, which I do. But then it rejects the key for not being 1024 bits long, while it was made with the setting at 1024 bits!

Am I doing something wrong or is this a bug?

 

putty-key-wth.png

Answer
Watch
Like Deleted user likes this
6063 views

4 answers

1 vote
Bernát Gyovai
Bernát Gyovai November 21, 2017

I know this is an old issue, and Keys are required to be "at least 2048" bits long. But you guys forgot to put an equals sign on the checking part of your code... (again) :)

Keys are not required to be "at least least 2048" but they have to be longer that that. :D 2048 is not enough. 

Reply
0 votes
Mark Adams
Mark Adams
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
September 15, 2017

Hi Lennart! 

Jim is definitely correct that we recommend that SSH keys using RSA have a key strength of at least 2048 bits to continue to be secure. I think the simplest solution to your issue is to try generating a 2048-bit key instead.

However, it is odd that the key generated by Putty is not passing our validation. If it wouldn't be too much trouble, could you file a support ticket at http://support.atlassian.com and include the failing public key so that we can analyze it in more detail?

Thanks!

Mark Adams
Sr Developer, Bitbucket

Reply
0 votes
jredmond
jredmond
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
September 14, 2017

I would strongly urge you to build larger keys - at least 2048 bits for RSA, and bigger if you can. 1024-bit RSA keys have not been considered secure for quite some time now (http://csrc.nist.gov/groups/ST/toolkit/documents/draftSP800-131_June_11_2010.pdf is a recommendation from 2010 to phase out 1024-bit keys) and I'm surprised we still support RSA keys that small.

I'd also check to see if a newer version of Putty supports elliptic key algorithms, such as ECDSA or Ed25519.

Reply
0 votes
Richelle Spry
Richelle Spry September 14, 2017

I had the same issue, I was able to resolve it by changing the 'Number of bits in a generated key' to a number over 1024 (say 1025), and re-generated the key

Reply

Suggest an answer

Log in or Sign up to answer
Bitbucket
Bitbucket
TAGS
AUG Leaders

Atlassian Community Events

    See all events