New snapshot
Gert Doering
gert at greenie.muc.de
Wed Nov 15 18:09:39 EST 2000
Hi,
On Wed, Nov 15, 2000 at 10:56:25AM +0900, sen_ml at eccosys.com wrote:
> > I can somewhat understand the RSA/DSA issue (RSA patent?) but having a
> > third key, RSA again but incompatible to ssh1 makes this really confusing.
>
> iirc, no more rsa patent, so imo that's not the reason. i don't know
> the reason for a second type of rsa key. perhaps that has already been
> mentioned or will be touched upon.
I hope so.
> however, concerning multiple public key algorithm choice, consider the
> following scenario...one day you wake up to find that rsa algorithm
> has been broken. what are you going to do? oh look, we've also got
> the choice of using dsa. good thing we're able to use alternative
> algorithms in our protocol! ;-)
Well, I have no problem with having a *choice* of adding a second key to
enable another algorithm.
My gripe is being *forced* to create multiple different host keys (or
disable protocol 2).
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany gert at greenie.muc.de
fax: +49-89-35655025 gert.doering at physik.tu-muenchen.de
More information about the openssh-unix-dev
mailing list