IETF-SSH archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
Re: Terrapin
>> Why *does* EtM-OpenSSH send packet lengths in the clear? [...]
> This is needed to find the location of the MAC at the end of the
> packet [...]
I suspect the question was more "why send lengths in the clear rather
than encrypted" than "why send lengths at all".
I've mentioned my own understanding of the reason on-list recently;
search for "SandP" in your back mail, or the archives if need be.
(Most briefly, my understanding is that it's to defeat an attack, but
in my opinion there are better defenses.)
/~\ The ASCII Mouse
\ / Ribbon Campaign
X Against HTML mouse%rodents-montreal.org@localhost
/ \ Email! 7D C8 61 52 5D E7 2D 39 4E F1 31 3E E8 B3 27 4B
Home |
Main Index |
Thread Index |
Old Index