Re: Nits in current drafts

To: bjh21%bjh21.me.uk@localhost, ietf-ssh%netbsd.org@localhost, pgut001%cs.auckland.ac.nz@localhost
Subject: Re: Nits in current drafts
From: pgut001%cs.auckland.ac.nz@localhost (Peter Gutmann)
Date: Wed, 23 Feb 2005 00:36:26 +1300

Ben Harris <bjh21%bjh21.me.uk@localhost> writes:

>I think this is a bad idea for the following reasons:

None of those seem valid.  At the moment, the only signature mechanism is ssh-
xyz (the others are all ambiguous, so in effect they're xyz%vendorname.com@localhost
mechanisms).  Therefore if a weakness is found in the hash or signature
algorithm, all implementations will need to be fixed anyway.  Conversely, if
no weaknesses are found, there's nothing to do.  In both cases it's no change
from the current state of affairs.

(If there was some huge deployed user base that needs to be accomodated that'd
 be another issue, but debating the theoretical pros and cons of something
 that, in 23 revisions of the spec over a period of 8(?) years, nothing has
 ever used, seems rather pointless).

Peter.

Follow-Ups:
- Re: Nits in current drafts
  - From: Ben Harris

References:
- Re: Nits in current drafts
  - From: Ben Harris

Prev by Date: Re: Nits in current drafts
Next by Date: Re: Nits in current drafts
Previous by Thread: Re: Nits in current drafts
Next by Thread: Re: Nits in current drafts
Indexes:

Home | Main Index | Thread Index | Old Index