des_ssh1_setiv not setting the IV ?

[Seth Arnold]

On Wed, Nov 14, 2001 at 05:37:20AM -0800, Dan Kaminsky wrote:
>    [The short version: fixed initialization vector is not a threat,
> because the entire symmetric key changes with each session]

Great. Thanks Dan and Markus.

Now that you mention it, I do seem to recall new session keys for each
new connection, which *would* obviate entirely the need for dynamic IVs.
(Well, at least until keys are re-used, which, with a 56-bit keyspace,
is liable to happen sooner or later by accident -- but there are worse
problems with DES anyway. :)

I appreciate you both taking the time to look into this, even if the end
result is that I don't get my name in lights. :)

> P.S. Yes, this is the former dankamin at cisco.com, and it's good to be
> back :-)

Welcome back. I hope you are enjoying your new position at DoxPara
research. I look forward to your continued (and re-newed :) presence in
all the same lists I follow. :)

Thanks again!

-- 
The Bill of Rights: 7 out of 10 rights haven't been sold yet! Contact
your congressman for details how *you* can buy one today!