SRP Patch Integration?

Markus Friedl markus at
Wed Feb 13 10:27:29 EST 2002

On Mon, Feb 11, 2002 at 07:26:16PM -0800, Tom Wu wrote:
> Simply stated, SRP is a strong password authentication protocol that
> resists passive/active network attack, and when used in conjunction with
> OpenSSH, solves the "unknown host key" problem without requiring host
> key fingerprint verification or PKI deployment (e.g. X.509 certs).  Put

AFAIK the same applies to SSH2 w/ pubkey auth.

More information about the openssh-unix-dev mailing list