I found the openssl.vim plugin not working. (https://www.vim.org/scripts/script.php?script_id=2012)

When trying to decrypt it complained: 'bad magic number'

The reason was that during encryption openssh produced a warning: WARNING : deprecated key derivation used. Using -iter or -pbkdf2 would be better.

This warning ended up in the aes-file before the key.

The solution: add -pbkdf2 as a parameter for decryption (line 107) and encryption (line 149) So " -e -salt" becomes " -bpkdf2 -e -salt"

Then it's more secure and actually works! :-)

It's very useful. We use it to store our server-passwords encrypted and have much less hassle using them,.

Community content is available under CC-BY-SA unless otherwise noted.