sftp/scp performance testing
Markus Friedl
markus at openbsd.org
Thu Jan 10 23:13:00 EST 2002
On Thu, Jan 10, 2002 at 12:49:41AM -0800, Dan Kaminsky wrote:
> Thus the difference between implicit and explicit authentication of
> packets.
as I understand this:
SSH 1 thinks that CBC encryption is ok for implicit
packet authentication. but this is wrong, thus
the need for the deattack.c hack.
Modes like OCB would simultaneously provide
both privacy and authenticity.
More information about the openssh-unix-dev
mailing list