des_ssh1_setiv not setting the IV ?
Seth Arnold
sarnold at marcelothewonderpenguin.com
Thu Nov 15 06:43:38 EST 2001
On Wed, Nov 14, 2001 at 05:37:20AM -0800, Dan Kaminsky wrote:
> [The short version: fixed initialization vector is not a threat,
> because the entire symmetric key changes with each session]
Great. Thanks Dan and Markus.
Now that you mention it, I do seem to recall new session keys for each
new connection, which *would* obviate entirely the need for dynamic IVs.
(Well, at least until keys are re-used, which, with a 56-bit keyspace,
is liable to happen sooner or later by accident -- but there are worse
problems with DES anyway. :)
I appreciate you both taking the time to look into this, even if the end
result is that I don't get my name in lights. :)
> P.S. Yes, this is the former dankamin at cisco.com, and it's good to be
> back :-)
Welcome back. I hope you are enjoying your new position at DoxPara
research. I look forward to your continued (and re-newed :) presence in
all the same lists I follow. :)
Thanks again!
--
The Bill of Rights: 7 out of 10 rights haven't been sold yet! Contact
your congressman for details how *you* can buy one today!
More information about the openssh-unix-dev
mailing list