New snapshot
Markus Friedl
markus.friedl at informatik.uni-erlangen.de
Sat Nov 18 07:19:56 EST 2000
On Thu, Nov 16, 2000 at 07:14:24PM +0000, Christian Weisgerber wrote:
> Markus Friedl <markus.friedl at informatik.uni-erlangen.de> wrote:
>
> > > Unfortunately, SSH2 connection setup is still unusably slow on
> > > slower machines. [...]
> >
> > just remove /etc/primes and try again...
>
> What is this file? It's not documented in sshd(8)--nor OpenBSD's
> man pages in general.
see
http://www.ietf.org/internet-drafts/draft-provos-secsh-dh-group-exchange-00.txt
for info on the 'Diffie-Hellman Group Exchange'
> Anyway, I did, and the situation improved. From "ssh -v" I gather
> that whatever this Diffie-Hellman Group Exchange exchanges is down
> from 2048 to 1024 bits, resulting in a connection setup time of
> 25+ seconds. (Still a pain for practical use, of course. Protocol 1
> takes about five seconds.)
there is no faster (and secure) alternative to the 1024 bit DH group.
-m
More information about the openssh-unix-dev
mailing list