Re: [psg.com #460] IESG - Transport - Oakley

[Damien Miller <djm%mindrot.org@localhost>]

Nicolas Williams wrote:
> I don't think it's a practical problem now, no.
> 
> But parametrizing the SSHv2 DH kex (diffie-hellman-group<N>-<hash>)
> shouldn't hold up publication as long as we quickly reach consensus
> on the meaning of <N> and <hash>.

Throughout the protocol, all of these fields are names, not parameters.
Parametising one but not all may give implemntors the idea that they
have the ability to pick and choose (e.g. cipher key lengths).

I think we should specify diffie-hellman-group1-sha1 (MUST),
diffie-hellman-group14-sha1 (RECOMMENDED or MUST), perhaps recommend
DH-GEX (ideally *in* the DH-GEX document when it is advanced) and leave
it at that.

-d