CryptoCard patch

Damien Miller djm at mindrot.org
Thu Sep 14 22:06:47 EST 2000


On 14 Sep 2000, erich wrote:

> > I am not particularly keen on putting code into OpenSSH to support
> > proprietary authentication technologies.
> 
> CryptoCard is absolutely not in any way a proprietary authentication
> technology.  It is a plain and simple DES ECB encryption of the input,
> using a key which is stored in the device.  The first 4 bytes of the
> output are then displayed in hex.  In fact, I have also hired someone
> to write a CryptoCard emulator for the Palm Pilot, and the resulting
> code will also be under GPL.  Contrast this with RSA, which is in fact
> a proprietary authentication technology, and which OpenSSH supports by
> default.

I was mistaken about Cryptocard, my apologies. Calling RSA proprietary
is a drawing a bit of a long bow though.

> > In any case, changes to the protocol (which this is) should be sent
> > via the OpenBSD maintainers. I doubt they would accept the patch in its
> > current form - it uses functions only present in the portable version.
> 
> Who can I talk to about this?  Should I send it to the OpenBSD core
> team?

There are several on the list, otherwise you can contact them direct at
openssh at openbsd.org.

Regards,
Damien Miller

-- 
| ``The power of accurate observation is  | Damien Miller <djm at mindrot.org>
| commonly called cynicism by those who   | @Work <djm at ibs.com.au>
| have not got it'' - George Bernard Shaw | http://www.mindrot.org






More information about the openssh-unix-dev mailing list