Posted: Tue Nov 22, 2022 15:26 Post subject: [SOLVED] ConnectBot with PuTTYgen Keys - SSH App for Android
I've been updating my Router's old SSH RSA 2048 Keys to the Ed25519 with PuTTYgen Release 0.76. My old Android SSH App don't support Ed25519 Keys. I just want to know which Android SSH App are people on the forum are using that are up to date secure and support Port Forwarding and Ed25519 Keys in PuTTY.
TIA!
Edited Title... _________________ Home Network on Telus 1Gb PureFibre - 10GbE Copper Backbone
2x R7800 - Gateway & WiFi & 3xWireGuard - DDWRT r53562 Std k4.9
Off Site 1
R7000 - Gateway & WiFi & WireGuard - DDWRT r54517 Std
E3000 - Station Bridge - DDWRT r49626 Mega K4.4
Off Site 2
R7000 - Gateway & WiFi - DDWRT r54517 Std
E2000 - Wired ISP IPTV PVR Blocker - DDWRT r35531
https://proprivacy.com/guides/ssh-android-setup-guide _________________ "The woods are lovely, dark and deep,
But I have promises to keep,
And miles to go before I sleep,
And miles to go before I sleep." - Robert Frost
"I am one of the noticeable ones - notice me" - Dale Frances McKenzie Bozzio
For Security and Speed isn't it best to move to the Ed25519 Keys instead of the long RSA Keys? _________________ Home Network on Telus 1Gb PureFibre - 10GbE Copper Backbone
2x R7800 - Gateway & WiFi & 3xWireGuard - DDWRT r53562 Std k4.9
Off Site 1
R7000 - Gateway & WiFi & WireGuard - DDWRT r54517 Std
E3000 - Station Bridge - DDWRT r49626 Mega K4.4
Off Site 2
R7000 - Gateway & WiFi - DDWRT r54517 Std
E2000 - Wired ISP IPTV PVR Blocker - DDWRT r35531
I have ConnectBot but doesn't work with Keys generated with PuTTygen 0.76 using Ed25519 and passphrase. The last update was Oct 2021. _________________ Home Network on Telus 1Gb PureFibre - 10GbE Copper Backbone
2x R7800 - Gateway & WiFi & 3xWireGuard - DDWRT r53562 Std k4.9
Off Site 1
R7000 - Gateway & WiFi & WireGuard - DDWRT r54517 Std
E3000 - Station Bridge - DDWRT r49626 Mega K4.4
Off Site 2
R7000 - Gateway & WiFi - DDWRT r54517 Std
E2000 - Wired ISP IPTV PVR Blocker - DDWRT r35531
I have ConnectBot but doesn't work with Keys generated with PuTTygen 0.76 using Ed25519 and passphrase. The last update was Oct 2021.
Does anything in the article say that ConnectBot is compatible with ECDSA/ed25519? Unless specifically stated in the article, it doesn't support them... _________________ "The woods are lovely, dark and deep,
But I have promises to keep,
And miles to go before I sleep,
And miles to go before I sleep." - Robert Frost
"I am one of the noticeable ones - notice me" - Dale Frances McKenzie Bozzio
I have ConnectBot but doesn't work with Keys generated with PuTTygen 0.76 using Ed25519 and passphrase. The last update was Oct 2021.
Does anything in the article say that ConnectBot is compatible with ECDSA/ed25519? Unless specifically stated in the article, it doesn't support them...
I'm going to test ConnectBot's Key Generator since it has type Ed25519 with Password. I will test if PuTTY 0.76 will work with this Key too. _________________ Home Network on Telus 1Gb PureFibre - 10GbE Copper Backbone
2x R7800 - Gateway & WiFi & 3xWireGuard - DDWRT r53562 Std k4.9
Off Site 1
R7000 - Gateway & WiFi & WireGuard - DDWRT r54517 Std
E3000 - Station Bridge - DDWRT r49626 Mega K4.4
Off Site 2
R7000 - Gateway & WiFi - DDWRT r54517 Std
E2000 - Wired ISP IPTV PVR Blocker - DDWRT r35531
I have ConnectBot but doesn't work with Keys generated with PuTTygen 0.76 using Ed25519 and passphrase. The last update was Oct 2021.
Does anything in the article say that ConnectBot is compatible with ECDSA/ed25519? Unless specifically stated in the article, it doesn't support them...
I'm going to test ConnectBot's Key Generator since it has type Ed25519 with Password. I will test if PuTTY 0.76 will work with this Key too.
Tested ConnectBot's Ed25519 Key Generator and the host (DDWRT Router) does NOT like the Password and will not connect. PuTTYgen Ed25519 Key works fine with DDWRT Router. When I use the PuTTYgen Key with ConnectBot, states Bad Password. ConnectBot r1.9.8 has issues with Ed25519 and Password. In the past ConnectBot with RSA with Password from PuTTYgen worked fine. _________________ Home Network on Telus 1Gb PureFibre - 10GbE Copper Backbone
2x R7800 - Gateway & WiFi & 3xWireGuard - DDWRT r53562 Std k4.9
Off Site 1
R7000 - Gateway & WiFi & WireGuard - DDWRT r54517 Std
E3000 - Station Bridge - DDWRT r49626 Mega K4.4
Off Site 2
R7000 - Gateway & WiFi - DDWRT r54517 Std
E2000 - Wired ISP IPTV PVR Blocker - DDWRT r35531
Well, you can also use multiple keys.
In the router you only have to store several public keys.
On the end devices you can then use individual private keys.
E.g., created with dropbear / openssh / putty / whatever ...
:)
By the way, it is safest if you don't store your private keys on any smartphone :mrgreen:
I always use Passswords/Passphares with my Keys, so the key is useless without knowing the Password or Passphrase. I don't use 1234 as a password either. :) _________________ Home Network on Telus 1Gb PureFibre - 10GbE Copper Backbone
2x R7800 - Gateway & WiFi & 3xWireGuard - DDWRT r53562 Std k4.9
Off Site 1
R7000 - Gateway & WiFi & WireGuard - DDWRT r54517 Std
E3000 - Station Bridge - DDWRT r49626 Mega K4.4
Off Site 2
R7000 - Gateway & WiFi - DDWRT r54517 Std
E2000 - Wired ISP IPTV PVR Blocker - DDWRT r35531
I have ConnectBot working with PuTTYgen Ed25519 Keys
You need to use 3 different formats for your newly created Ed25519 from PuTTYgen 0.76...
When you start PuTTYgen select EdDSA with Curve Ed25519 then Press Generate and move your mouse around to create the Key. Now enter your Key passphrase. Now we can create 2 different files and import the new key to your DD-WRT Router with at least Build 50906.
a) Your PuTTY software will need the file created from "Save private key" which is a ppk file.
Debian CLI Command (-C is optional): puttygen -t ed25519 -C "personal_comment" -o file_name.ppk
b) Now for your DD-WRT Router SSH Key, copy the key inside the box "Public key for pasting into OpenSSH..." You may want to back it up in a file. (I use wrt extension)
Debian CLI Command: puttygen file_name.ppk -O public-openssh -o file_name.wrt
c) Your ConnectBot App will need the file created from the top tab "Conversions" and "Export OpenSSH Key" there are 2 types they both work, pick either one. (I use ssh extension)
Debian CLI Command: puttygen file_name.ppk -O private-openssh -o file_name.ssh
If your Host ConnectBot doesn't connect, delete the Host and re-create it. This will reset the SshHostKey in the app.
UPDATE Testeing the Windows Putty 0.78 "ppk" keys in Putty 0.74 under Debian Bullseye "stable" states the key format is too new and doesn't work. I created new ed25519 keys with Debian Puttygen 0.74 using the commands in Bold and works with Putty 0.78 too. _________________ Home Network on Telus 1Gb PureFibre - 10GbE Copper Backbone
2x R7800 - Gateway & WiFi & 3xWireGuard - DDWRT r53562 Std k4.9
Off Site 1
R7000 - Gateway & WiFi & WireGuard - DDWRT r54517 Std
E3000 - Station Bridge - DDWRT r49626 Mega K4.4
Off Site 2
R7000 - Gateway & WiFi - DDWRT r54517 Std
E2000 - Wired ISP IPTV PVR Blocker - DDWRT r35531