openssh and SSLv2 ciphers
Gert Doering
gert at greenie.muc.de
Fri Feb 27 08:57:53 EST 2009
Hi,
On Thu, Feb 26, 2009 at 12:44:34PM -0700, Smith, Steven G (Steven) wrote:
> Thanks for the reply. Just to clarify, you are saying that almost all
> of the SSH ciphers come from Openssl. Is that right?
Yes. But that doesn't make them "SSLv2" ciphers, as in "SSLv2 is so
insecure, everybody should use SSLv3".
It's just well-tested and fast implementations of 3DES, Blowfish, etc.
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany gert at greenie.muc.de
fax: +49-89-35655025 gert at net.informatik.tu-muenchen.de
More information about the openssh-unix-dev
mailing list