[00:06] <Eickmeyer> !pro
[00:06] <Eickmeyer> ope
[00:06] <Eickmeyer> !ubuntu-pro
[00:06] <Eickmeyer> ok, I don't know the factoid.
[00:06] <Eickmeyer> It's part of Ubuntu Pro.
[00:07] <Eickmeyer> !ubuntupro
[00:10] <sarnold> hallyn: I think this will show you what's been installed from universe: apt list '?installed?section(^universe/)'
[00:21] <hallyn> hm, but if i'm on 20.04 that shouldn't apply, right?  standard lts should apply?
[00:21] <hallyn> guess i'll read those links, thanks :)
[00:21] <hallyn> i see, universe.
[00:24] <sarnold> hallyn: we support universe now! :)
[00:25] <hallyn> neat :)
[00:26] <hallyn> ok, got it - thanks Eickmeyer  and sarnold 
[00:26] <sarnold> yeah :) all the little one-offs that we'd been asked to do over the years sort of added up to a "hey maybe we should just make this an offering and pool the work", etc
[14:26] <rbasak> ssh-keygen defaults to "-t rsa". Is that still the right thing to do?
[14:31] <sarnold> I've wondered that time and time again
[14:32] <sarnold> afaik it's not the wrong thing to do; I sort of expect upstream folks will change defaults if they think there's a Good Reason to do so (though I'll be honest I don't know that for sure, hopefully it's not generating 512 bit rsa by default? :)
[14:32] <rbasak> I wonder if we should separate recommended practice from what is default, since there are both legacy and "don't mismatch from upstream" reasons not to change the default.
[14:32] <rbasak> What should our recommendation be for new SSH key generation?
[14:48] <sdeziel> upstream defaults to RSA 3072 bits with the latest version. Personally, I always go with `-t ed25519`