Re: Some questions about "SSH Transport Layer Encryption Modes"

To: markus%openbsd.org@localhost, pgut001%cs.auckland.ac.nz@localhost
Subject: Re: Some questions about "SSH Transport Layer Encryption Modes"
From: pgut001%cs.auckland.ac.nz@localhost (Peter Gutmann)
Date: Sun, 19 Oct 2003 01:56:28 +1300

Markus Friedl <markus%openbsd.org@localhost> writes:
>On Sat, Oct 18, 2003 at 06:56:35PM +1300, Peter Gutmann wrote:
>>Markus Friedl <markus%openbsd.org@localhost> writes:
>>>i think this has been discussed before.
>>
>>Hmm, I think "debated without clear resolution" might be a better description,
>>if you're referring to the debate from about two years ago.  Specifically, the
>>exact message/data flow was never totally resolved.
>
>Hm, AFAIK we agreed, that after sending KEXINIT you MUST NOT send messages of
>type > 49 (i.e. only transport layer messages are allowed) until you send
>NEWKEYS.

I was under the impression that the debate had simply fizzled out.  The
specification certainly hasn't been clarified (it's remained unchanged since
the -02 draft of late 1997), and that would be the definitive reference.

Peter.

Follow-Ups:
- Re: Some questions about "SSH Transport Layer Encryption Modes"
  - From: Jeffrey Hutzelman

Prev by Date: Re: Some questions about "SSH Transport Layer Encryption Modes"
Next by Date: Re: Some questions about "SSH Transport Layer Encryption Modes"
Previous by Thread: Re: Some questions about "SSH Transport Layer Encryption Modes"
Next by Thread: Re: Some questions about "SSH Transport Layer Encryption Modes"
Indexes:

Home | Main Index | Thread Index | Old Index