[Bug 1056] RekeyLimit can be ridiculously low and is undocumented.

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Sun Oct 30 11:33:21 EST 2005


http://bugzilla.mindrot.org/show_bug.cgi?id=1056


djm at mindrot.org changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
 Attachment #929 is|0                           |1
           obsolete|                            |
         AssignedTo|bitbucket at mindrot.org       |djm at mindrot.org
             Status|NEW                         |ASSIGNED
   Attachment #1015|                            |ok?
               Flag|                            |




------- Comment #3 from djm at mindrot.org  2005-10-30 11:33 -------
Created an attachment (id=1015)
 --> (http://bugzilla.mindrot.org/attachment.cgi?id=1015&action=view)
Minimum 1k rekeylimit, check for integer wrap

This checks that the RekeyLimit is >= 1024 and raises a fatal() error if it
isn't. 

It also checks for integer wraparound (because rekey_limit is only a signed
int) and fatal()s if it wraps.




------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
You are the assignee for the bug, or are watching the assignee.




More information about the openssh-bugs mailing list