clearifiy pem format

CrowdSalat · CrowdSalat · commit 9c531c3f64e7 · 2025-06-06T13:47:15.000+02:00
diff --git a/docs/certificates.md b/docs/certificates.md
@@ -25,6 +25,23 @@
 - .pfx - pkcs12
 - .csr (certificate signing request): temporary 
 
+### more on pem
+
+A PEM file looks like this:
+
+```
+-----BEGIN [TYPE OF DATA]-----
+[Base64 encoded binary data]
+-----END [TYPE OF DATA]-----
+```
+
+The [TYPE OF DATA] part indicates the format of the binary data within the base64 block. This is where PKCS#1, PKCS#8, and OpenSSH formats come into play for private keys.
+
+- PKCS#1 PEM Format (-----BEGIN RSA PRIVATE KEY-----) - : PKCS#1 (Public-Key Cryptography Standards #1) specifically defines the syntax for RSA public and private keys
+- PKCS#8 PEM Format (-----BEGIN PRIVATE KEY----- or -----BEGIN ENCRYPTED PRIVATE KEY-----) -  PKCS#8 (Private-Key Information Syntax Specification) is a more generic standard for storing private keys for any public-key algorithm, not just RSA.
+- OpenSSH Private Key Format (-----BEGIN OPENSSH PRIVATE KEY-----) - This is a custom, OpenSSH-specific format, introduced in OpenSSH 7.8 (released in 2017).
+
+
 ## default locations
 
 ### Linux
diff --git a/docs/linux (debian based)/network_ssh.md b/docs/linux (debian based)/network_ssh.md
@@ -18,17 +18,6 @@ chmod 644 ~/.ssh/id_ed25519.pub
 chmod 600 ~/.ssh/id_ed25519
 ```
 
-If the "-----BEGIN OPENSSH PRIVATE KEY-----" format is not accepted use plain openssl cli:
-
-```shell
-openssl genpkey -algorithm ed25519 -out key.pem
-openssl pkey -in key.pem -pubout -out public.pem
-
-# or for rsa
-openssl genrsa -out key.pem 4096
-openssl rsa -in key.pem -out pubkey.pem -outform PEM -pubout
-```
-
 ## connect via ssh
 
 ```shell
