Re: Transport I-D: KEXINIT reserved field needs description

To: Nicolas Williams <Nicolas.Williams%sun.com@localhost>
Subject: Re: Transport I-D: KEXINIT reserved field needs description
From: Jon Bright <jon%siliconcircus.com@localhost>
Date: Wed, 23 Jul 2003 19:46:21 +0200

Nicolas Williams wrote:

This would require the use of extra packets after kex to verify that
one's peer truly did not support the new packets.

Sorry, on this occasion, I meant an extra packet sent after receivingthe other side's key if the reserved field from the remote side isnon-zero (as Markus suggested). It's an extra round-trip, but should befairly foolproof. Basically, both sides, upon receiving non-zero fromthe other side, embark on new-and-shiny-kex and forget about whateverthey would have done with current-kex.


--
Jon Bright
Lead Programmer, Silicon Circus Ltd.
http://www.siliconcircus.com

References:
- Transport I-D: KEXINIT reserved field needs description
  - From: Nicolas Williams
- Re: Transport I-D: KEXINIT reserved field needs description
  - From: Nicolas Williams
- Re: Transport I-D: KEXINIT reserved field needs description
  - From: Markus Friedl
- Re: Transport I-D: KEXINIT reserved field needs description
  - From: Jon Bright
- Re: Transport I-D: KEXINIT reserved field needs description
  - From: Nicolas Williams

Prev by Date: Re: Transport I-D: KEXINIT reserved field needs description
Next by Date: Re: Publickey subsystem draft posted
Previous by Thread: Re: Transport I-D: KEXINIT reserved field needs description
Next by Thread: Re: Transport I-D: KEXINIT reserved field needs description
Indexes:

Home | Main Index | Thread Index | Old Index