ssh-keygen, I need to generate a SSH private key file where the encryption algorithm used when using a passphrase is AES-128 with CBC mode.
I know this is the default for OpenSSH >= 5.4 as per the release notes where they mention:
Passphrase-protected SSH protocol 2 private keys are now protected
with AES-128 instead of 3DES. This applied to newly-generated keys
as well as keys that are reencrypted (e.g. by changing their
However, my requirement is to use this encryption algorithm with OpenSSH 5.3p1 (I cannot change the OpenSSH version).
How can I change the encryption algorithm to AES-128 without upgrading to OpenSSH 5.4 or newer?