Re: des-cbc cipher

To: Markus Friedl <markus%openbsd.org@localhost>
Subject: Re: des-cbc cipher
From: RJ Atkinson <rja%inet.org@localhost>
Date: Thu, 29 Nov 2001 15:09:56 -0500

At 15:02 29/11/01, Markus Friedl wrote:
>On Thu, Nov 29, 2001 at 02:39:42PM -0500, RJ Atkinson wrote:
>> At 12:00 29/11/01, Niels Möller wrote:
>> >If you (or anybody else) really needs des-cbc, write up a document
>> >that defines "des-cbc%ssh.com@localhost" or "des-cbc%inet.org@localhost", and if you like,
>> >add a paragraph on bug compatibility that mentions that some existing
>> >implementations use the name "des-cbc" for the same thing.
>> 
>> What's needed is to document that using "des-cbc" (not "des-cbc@domain")
>> is permitted, but not required of anyone, and that using that token
>> (not the "des-cbc@domain" token) for that purpose does not make an
>> existing implementation non-compliant with the standards.
>
>no, "des-cbc" was never permitted, i checked:

SSHv2 was deployed before the time of the first IETF WG I-D,
so that isn't really sufficient here.  The WG is supposedly
standardising the deployed protocol, though perhaps not in fact.

The need remains and is technically founded in interoperability
and in not making otherwise conforming implementations non-conforming.

Ran

Follow-Ups:
- Re: des-cbc cipher
  - From: Niels Möller
- Re: des-cbc cipher
  - From: Markus Friedl

References:
- Re: des-cbc cipher
  - From: RJ Atkinson
- Re: des-cbc cipher
  - From: RJ Atkinson
- Re: des-cbc cipher
  - From: Simon Tatham
- Re: des-cbc cipher
  - From: Markus Friedl

Prev by Date: Re: des-cbc cipher
Next by Date: Re: des-cbc cipher
Previous by Thread: Re: des-cbc cipher
Next by Thread: Re: des-cbc cipher
Indexes:

Home | Main Index | Thread Index | Old Index