IETF-SSH archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: [Curdle] DH Group Exchange in SSH (RFC 4419) - Avoiding Backsdoors

To: "Mark D. Baushke" <mdb%juniper.net@localhost>, "ietf-ssh%NetBSD.org@localhost" <ietf-ssh%NetBSD.org@localhost>, "curdle%ietf.org@localhost" <curdle%ietf.org@localhost>
Subject: Re: [Curdle] DH Group Exchange in SSH (RFC 4419) - Avoiding Backsdoors
From: Peter Gutmann <pgut001%cs.auckland.ac.nz@localhost>
Date: Fri, 30 Sep 2016 06:38:59 +0000

Mark D. Baushke <mdb%juniper.net@localhost> writes:

>Should RFC 4419 - "Diffie-Hellman Group Exchange for the Secure Shell (SSH)
>Transport Layer Protocol" be deprecated?

No.

If you're worried about a malicious server then you'd really have to deprecate
RFCs 4251 to 4253, since only that will protect you from one.

Peter.

References:
- DH Group Exchange in SSH (RFC 4419) - Avoiding Backsdoors
  - From: Mark D. Baushke

Prev by Date: Re: DH Group Exchange in SSH (RFC 4419) - Avoiding Backsdoors
Next by Date: Reference for UTF8 in SSH UTF8 terminal mode
Previous by Thread: Re: DH Group Exchange in SSH (RFC 4419) - Avoiding Backsdoors
Next by Thread: Reference for UTF8 in SSH UTF8 terminal mode
Indexes:

Home | Main Index | Thread Index | Old Index