Clear-Text Patch? was: Re: OpenSSH 5.1: call for testing
Dag-Erling Smørgrav
des at des.no
Wed Jul 23 18:51:53 EST 2008
rapier <rapier at psc.edu> writes:
> If you simply add 'none' to the list and both sides of the connection
> agree to use none then all transactions for that connection, including
> authentication, happen in the clear. This is obviously
> unacceptable.
Depends on the context. I rarely use the "none" cipher, and haven't in
a while, but it has always been on a trusted network, between two
servers connected to the same switch. I would never use the "none"
cipher over an untrusted link, even if only for "bulk data transport".
DES
--
Dag-Erling Smørgrav - des at des.no
More information about the openssh-unix-dev
mailing list