From 2b5b7b5c45c5b3bbca36cee4d2c21281646eb79a Mon Sep 17 00:00:00 2001
From: Jacob Nevins <jacobn@chiark.greenend.org.uk>
Date: Fri, 21 Oct 2022 11:51:34 +0100
Subject: [PATCH] Docs: note warning about <2048-bit RSA/DSA keys.

---
 doc/pubkey.but | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/doc/pubkey.but b/doc/pubkey.but
index 750cc738..c51f87bb 100644
--- a/doc/pubkey.but
+++ b/doc/pubkey.but
@@ -132,7 +132,8 @@ The \q{Number of bits} input box allows you to choose the strength
 of the key PuTTYgen will generate.
 
 \b For RSA and DSA, 2048 bits should currently be sufficient for most
-purposes.
+purposes. (Smaller keys of these types are no longer considered
+secure, and PuTTYgen will warn if you try to generate them.)
 
 \b For ECDSA, only 256, 384, and 521 bits are supported. (ECDSA offers
 equivalent security to RSA with smaller key sizes.)