Re: draft-ietf-secsh-newmodes-01.txt: WG Last Call!

Subject: Re: draft-ietf-secsh-newmodes-01.txt: WG Last Call!
From: Yoshi Kohno <tkohno%cs.ucsd.edu@localhost>
Date: Wed, 12 Nov 2003 11:30:31 -0800

Of course, this doens't mean that it's harmless to reuse the sequence
number. Reusing the sequence number makes it possible for an attacker
to replay ssh packets (this is also documented in the BKN paper).

To me, replay attacks are a more compelling reason to avoid sequence
number reuse than the information leak, and I think the newmodes
document should mention this class of attacks.

Thank you for pointing this out. Yes, we seem to have failed to mentionthis in the current version of the Internet-Draft. We will fix this inthe next version.


Yoshi

References:
- draft-ietf-secsh-newmodes-01.txt: WG Last Call!
  - From: Bill Sommerfeld
- Re: draft-ietf-secsh-newmodes-01.txt: WG Last Call!
  - From: Niels Möller

Prev by Date: Re: additional core draft nits in need of WG attention.
Next by Date: Re: additional core draft nits in need of WG attention.
Previous by Thread: Re: draft-ietf-secsh-newmodes-01.txt: WG Last Call!
Next by Thread: IESG issue with transport draft: version string termination.
Indexes:

Home | Main Index | Thread Index | Old Index