Re: Terrapin

To: ietf-ssh <ietf-ssh%netbsd.org@localhost>
Subject: Re: Terrapin
From: Simon Tatham <anakin%pobox.com@localhost>
Date: Thu, 28 Dec 2023 17:48:31 +0000

Mouse <mouse%Rodents-Montreal.ORG@localhost> writes:
> In the EXT_INFO case, I really think the right thing would have been to
> make it a global request.

Unfortunately, you need to send it before userauth if you're going to
use it to change RSA signature types _during_ userauth. And global
requests are part of the ssh-connection subprotocol, which doesn't start
until userauth is finished. It's not an incorrectness in an
implementation that it rejects global requests before their time!

Cheers,
Simon

-- 
import hashlib; print((lambda p,q,g,y,r,s,m: (lambda w:(pow(g,int(hashlib.sha1(
m.encode('ascii')).hexdigest(),16)*w%q,p)*pow(y,r*w%q,p)%p)%q)(pow(s,q-2,q))==r
and s%q!=0 and m)(12342649995480866419, 2278082317364501, 1670428356600652640,
5398151833726432125, 645223105888478, 1916678356240619, "<anakin%pobox.com@localhost>"))

Follow-Ups:
- Re: Terrapin
  - From: Mouse

References:
- Re: Terrapin
  - From: Mouse

Prev by Date: Re: Terrapin
Next by Date: Re: Terrapin
Previous by Thread: Re: Terrapin
Next by Thread: Re: Terrapin
Indexes:

Home | Main Index | Thread Index | Old Index