CompTIA Linux+ (XK0-004) — Question 230

A Linux administrator needs to generate SSH keys for remote users. The company security policy requires at least 4096-bit encryption on all public/private key pairs.
Which of the following commands should the administrator issue to comply with company policy?

Answer options

• A. ssh-keygen -c 4096
• B. ssh-keygen -b 4096
• C. ssh-keygen -t rsa
• D. ssh-keygen -t dsa

Correct answer: B

Explanation

The correct command is B, as the '-b' option specifies the number of bits in the key, and 4096 is the required size. Option A is incorrect because '-c' is not a valid flag for setting key size. Options C and D are not suitable as they define key types rather than key size.