encrypt authentication credentials with payload in the clear?

Markus Friedl markus at openbsd.org
Sun Mar 2 01:09:01 EST 2003

On Sat, Mar 01, 2003 at 07:25:23AM -0600, Scott Bolte wrote:
> 	Is it possible to use encryption only for authenticate and
> 	then switch to no encryption? I've looked at the code for
> 	OpenSSH 3.5p1, cipher.c, and it looks like the answer is
> 	no, at least for protocol 1. However, I cannot tell if that
> 	is a deliberate design limitation of the implementation or
> 	if it is inherent in ssh protocol 2.

you could hack openssh to do rekeying for none-encryption.

would be about ~20 lines of code.

More information about the openssh-unix-dev mailing list