Re: des-cbc cipher

To: ietf-ssh%netbsd.org@localhost
Subject: Re: des-cbc cipher
From: Thor Simon <tls%cs.stevens-tech.edu@localhost>
Date: Fri, 30 Nov 2001 06:45:53 -0500

On Thu, Nov 29, 2001 at 10:14:03AM -0500, RJ Atkinson wrote:
> At 03:43 29/11/01, Markus Friedl wrote:
> >However, if you need to have DES-CBC, write a document,
> >use "des-cbc%inet.org@localhost" and everything will be fine.
> 
>         Regrettably, that doesn't help at all -- because it doesn't document
> how to implement such that one can interoperate with the installed base 
> of DES-CBC implementations of SSHv2.  There are multiple such 
> implementations and an installed base of users.

It's the plain fault of the folks who chose to name their DES-CBC
implementation "des-cbc" instead of "des-cbc%ssh.com@localhost" that this situation
exists.  Why should we break the standard just for them?  Should we do so
in the future any time an implementation that's widely used violates any
detail of any standard?

Thor

References:
- Re: des-cbc cipher
  - From: RJ Atkinson
- Re: des-cbc cipher
  - From: Darren Moffat
- Re: des-cbc cipher
  - From: Markus Friedl
- Re: des-cbc cipher
  - From: RJ Atkinson

Prev by Date: Multiple simultaneous userauth requests
Next by Date: ANNOUNCE: ISOC Netw. & Distr. Sys. Security Symp. (NDSS'02)
Previous by Thread: Re: des-cbc cipher
Next by Thread: Re: des-cbc cipher
Indexes:

Home | Main Index | Thread Index | Old Index