IETF-SSH archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
Re: des-cbc cipher
At 15:02 29/11/01, Markus Friedl wrote:
>On Thu, Nov 29, 2001 at 02:39:42PM -0500, RJ Atkinson wrote:
>> At 12:00 29/11/01, Niels Möller wrote:
>> >If you (or anybody else) really needs des-cbc, write up a document
>> >that defines "des-cbc%ssh.com@localhost" or "des-cbc%inet.org@localhost", and if you like,
>> >add a paragraph on bug compatibility that mentions that some existing
>> >implementations use the name "des-cbc" for the same thing.
>>
>> What's needed is to document that using "des-cbc" (not "des-cbc@domain")
>> is permitted, but not required of anyone, and that using that token
>> (not the "des-cbc@domain" token) for that purpose does not make an
>> existing implementation non-compliant with the standards.
>
>no, "des-cbc" was never permitted, i checked:
SSHv2 was deployed before the time of the first IETF WG I-D,
so that isn't really sufficient here. The WG is supposedly
standardising the deployed protocol, though perhaps not in fact.
The need remains and is technically founded in interoperability
and in not making otherwise conforming implementations non-conforming.
Ran
Home |
Main Index |
Thread Index |
Old Index