encrypt authentication credentials with payload in the clear?
Scott Bolte
listS+openssh-unix-dev at niss.com
Sun Mar 2 11:22:17 EST 2003
> On Sat, 1 Mar 2003, Scott Bolte wrote:
>
> > On Sat, 1 Mar 2003 15:09:01 +0100, Markus Friedl wrote:
> > >
> > > > Is it possible to use encryption only for authenticate and
> > > > then switch to no encryption? ...
> > >
> > > you could hack openssh to do rekeying for none-encryption.
> > > would be about ~20 lines of code.
> >
> > Would you accept such a change and incorporate it back into
> > the standard code base?
> >
> > Scott
On Sat, 1 Mar 2003 16:31:45 -0600 (CST), Ben Lindstrom wrote:
>
> No.
>
> - Ben
Why not?
Network managers that want to run NIDS can hardly be unique.
As long as users are comfortable with their traffic being
visible, having the authorization exchange protected is a
major step up from the traditional rsh.
Scott
More information about the openssh-unix-dev
mailing list