CryptoCard patch
Damien Miller
djm at mindrot.org
Thu Sep 14 22:06:47 EST 2000
On 14 Sep 2000, erich wrote:
> > I am not particularly keen on putting code into OpenSSH to support
> > proprietary authentication technologies.
>
> CryptoCard is absolutely not in any way a proprietary authentication
> technology. It is a plain and simple DES ECB encryption of the input,
> using a key which is stored in the device. The first 4 bytes of the
> output are then displayed in hex. In fact, I have also hired someone
> to write a CryptoCard emulator for the Palm Pilot, and the resulting
> code will also be under GPL. Contrast this with RSA, which is in fact
> a proprietary authentication technology, and which OpenSSH supports by
> default.
I was mistaken about Cryptocard, my apologies. Calling RSA proprietary
is a drawing a bit of a long bow though.
> > In any case, changes to the protocol (which this is) should be sent
> > via the OpenBSD maintainers. I doubt they would accept the patch in its
> > current form - it uses functions only present in the portable version.
>
> Who can I talk to about this? Should I send it to the OpenBSD core
> team?
There are several on the list, otherwise you can contact them direct at
openssh at openbsd.org.
Regards,
Damien Miller
--
| ``The power of accurate observation is | Damien Miller <djm at mindrot.org>
| commonly called cynicism by those who | @Work <djm at ibs.com.au>
| have not got it'' - George Bernard Shaw | http://www.mindrot.org
More information about the openssh-unix-dev
mailing list