It's been suggested to me that I use blowfish if I am more concerned with speed than with security. Wasn't there some weakness in the SSH protocol if the null cipher were supported in the endpoints even if the user doesn't choose it? It may have been a vulnerability to a man-in-the-middle attack, I'm not sure. Phil