>>>>> "Greg" == Greg Hudson <ghudson@MIT.EDU> writes:
    Greg> For the record, this is a very dangerous assumption.  With some
    Greg> encryption mechanisms--particularly ciphers which XOR the plain text
    Greg> with a cryptographic pseudo-random byte stream--you can easily

  Yes.

    Greg> However, SSL provides integrity protection as well as encryption, so
    Greg> in this instance your argument is unaffected by your conclusion.  (As
    Greg> I understand it, SSH1 provides somewhat weak integrity protection, but
    Greg> it's still prohibitively difficult to alter the stream in practice.)

  This very attack is why SSH does not enable the arcfour cipher by
default. The attack is difficult, but relative to breaking the keys rather
easy.

] Train travel features AC outlets with no take-off restrictions|gigabit is no[
]   Michael Richardson, Solidum Systems   Oh where, oh where has|problem  with[
]     mcr@solidum.com   www.solidum.com   the little fishy gone?|PAX.port 1100[
] panic("Just another NetBSD/notebook using, kernel hacking, security guy");  [