Re: Albrecht/Paterson/Watson's attack

To: Mouse <mouse%Rodents-Montreal.ORG@localhost>
Subject: Re: Albrecht/Paterson/Watson's attack
From: nisse%lysator.liu.se@localhost (Niels Möller)
Date: Sat, 10 May 2014 09:10:24 +0200

Mouse <mouse%Rodents-Montreal.ORG@localhost> writes:

> moussh does not yet include this defense; I found it remarkably
> difficult to do.

I have some code to do this (not yet in any relased version, though, I don't get much
time for lsh hacking these days). I have a "push" flag for the functions
to encrypt and send of an ssh package. Packets without this flag is
buffered. When the buffered data exceeds a reasonable packet size, I
send the packet out with no extra ignore message.

If the push flag is set, the packet is sent regardless of the amount of
buffered data, and an extra ignore message is appended to the buffer.

See
http://git.lysator.liu.se/lsh/lsh/blobs/master/src/transport_write.c

Regards,
/Niels

-- 
Niels Möller. PGP-encrypted email is preferred. Keyid C0B98E26.
Internet email is subject to wholesale government surveillance.

Follow-Ups:
- Re: Albrecht/Paterson/Watson's attack
  - From: Mouse

References:
- Albrecht/Paterson/Watson's attack
  - From: Mouse
- Re: Albrecht/Paterson/Watson's attack
  - From: denis bider (Bitvise)
- Re: Albrecht/Paterson/Watson's attack
  - From: Niels Möller
- Re: Albrecht/Paterson/Watson's attack
  - From: Mouse

Prev by Date: Re: Albrecht/Paterson/Watson's attack
Next by Date: Re: Albrecht/Paterson/Watson's attack
Previous by Thread: Re: Albrecht/Paterson/Watson's attack
Next by Thread: Re: Albrecht/Paterson/Watson's attack
Indexes:

Home | Main Index | Thread Index | Old Index