Re: Terrapin

To: ietf-ssh%NetBSD.org@localhost
Subject: Re: Terrapin
From: Mouse <mouse%Rodents-Montreal.ORG@localhost>
Date: Fri, 29 Dec 2023 08:21:50 -0500 (EST)

>> Why *does* EtM-OpenSSH send packet lengths in the clear?  [...]
> This is needed to find the location of the MAC at the end of the
> packet [...]

I suspect the question was more "why send lengths in the clear rather
than encrypted" than "why send lengths at all".

I've mentioned my own understanding of the reason on-list recently;
search for "SandP" in your back mail, or the archives if need be.
(Most briefly, my understanding is that it's to defeat an attack, but
in my opinion there are better defenses.)

/~\ The ASCII				  Mouse
\ / Ribbon Campaign
 X  Against HTML		mouse%rodents-montreal.org@localhost
/ \ Email!	     7D C8 61 52 5D E7 2D 39  4E F1 31 3E E8 B3 27 4B

Follow-Ups:
- Re: Terrapin
  - From: Peter Gutmann

References:
- Re: Terrapin
  - From: Mouse
- Re: Terrapin
  - From: Simon Tatham
- Re: Terrapin
  - From: Peter Gutmann
- Re: Terrapin
  - From: Alexandre Becoulet

Prev by Date: Re: Terrapin
Next by Date: Re: Terrapin
Previous by Thread: Re: Terrapin
Next by Thread: Re: Terrapin
Indexes:

Home | Main Index | Thread Index | Old Index