issues

To: ietf-ssh%netbsd.org@localhost
Subject: issues
From: Niels Provos <provos%citi.umich.edu@localhost>
Date: Mon, 19 Mar 2001 11:24:08 -0500

Hi,

there are a couple of small issues that should be noted:

1. traffic analysis can determine the length of passwords that have
   been typed in for authentication or at the command line.

   a security advisory has been posted at
     
      http://www.openwall.com/advisories/OW-003-ssh-traffic-analysis.txt

   and should appear on the free version of the bugtraq mailing list soon.

2. the choice of private exponents for the diffie-hellman should depend
   on the size of key material for the negotiated ciphers, i.e.
   256-bit AES requires longer exponents than 128-bit AES.

   this applies to both the transport and the diffie-hellman group
   exchange draft.

These problems do not require any change in the protocol, and we will
provide short implementation notes to address the problems, i.e.
a description on how to alleviate them.

-- 
Niels Provos <provos%citi.umich.edu@localhost> finger provos%umich.edu@localhost for pgp info
	"Gravity is the soul of weight." - Anonymous.

Follow-Ups:
- issues
  - From: Mika Kojo

Prev by Date: Some SRP issues
Next by Date: issues
Previous by Thread: Some SRP issues
Next by Thread: issues
Indexes:

Home | Main Index | Thread Index | Old Index