IETF-SSH archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: draft-ietf-secsh-dns-01.txt Fingerprint digest alg



On Thu, 7 Nov 2002, Markus Friedl wrote:

> On Thu, Nov 07, 2002 at 04:25:57PM +0100, Jakob Schlyter wrote:
> > On Thu, 7 Nov 2002, Darren J Moffat wrote:
> >
> > > The only digest algorithm listed is SHA1. I think this is inconsistant with
> > > draft-ietf-secsh-fingerprint-01.txt (expired) which specified MD5 as
> > > the fingerprint digest algorithm.
> >
> > yes, that is intentional - I can not see any reason for using md5.
>
> well we've been using md5 in openssh forever. it's because ossh
> only had md5 support and not sha1.

let me clarify this; I can not see any reason for using md5 in sshfp. I
can of course change my mind if the wg strongly believes that md5 should
be an option.

	jakob





Home | Main Index | Thread Index | Old Index