[Bug 769] dh-group-exchange should be configurable off in client and server
bugzilla-daemon at mindrot.org
bugzilla-daemon at mindrot.org
Tue Dec 23 18:07:54 EST 2003
http://bugzilla.mindrot.org/show_bug.cgi?id=769
------- Additional Comments From dtucker at zip.com.au 2003-12-23 00:07 -------
Also, the supplied moduli file has moduli one bit smaller than what sshd is
looking for, so it ends up using the next size up resulting in a speed penalty.
The combination of Markus' patch (now in -current) and a replacement moduli file
(eg http://www.zip.com.au/~dtucker/openssh/moduli) results in a significant
improvement.
The server is a 170MHz SPARC:
$ time ssh -2 myserver true # 3.7.1p2
real 0m2.750s
$ time ssh -2 myserver true # new moduli
real 0m1.167s
$ time ssh -2 myserver true # new moduli+patch
real 0m1.130s
BTW compiling (openssh+openssl) on SPARCs with v8 instructions (eg "gcc -mv8")
enables the use of the hardware multiply which is significantly quicker.
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
More information about the openssh-bugs
mailing list