SSH Vulnerability : SSH Server Public Key Too Small

Solution Verified - Updated -


  • The following vulnerability was reported for RHEL 6 servers :
Vulnerability Name: SSH Server Public Key Too Small

Description: DSA keys and RSA keys shorter than 2048 bits are considered vulnerable.

Solution:  It is recommended to install a RSA public key length of at least 2048 bits or greater, or to switch to ECDSA or EdDSA. And disable the use of DSA key of 1024 bits.


  • Red Hat Enterprise Linux 6
  • openssh

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content