OpenSSH and keystroke timings
Howard Chu
hyc at symas.com
Wed Sep 9 07:44:00 EST 2009
Old news, but ... http://lwn.net/Articles/298833/
I first posted about this back in 2001 and it's still not resolved:
http://osdir.com/ml/ietf.secsh/2001-09/msg00000.html
1) high latency networks are a reality that will never go away. In fact they
will only become more prevalent since distributed networks continue to grow
broader but (surprise) the speed of light remains a constant.
2) character-at-a-time protocols have both security and performance costs.
3) a solution for this has existed in common operating systems for a couple of
decades already (LINEMODE tty support).
It's strange how the secsh group at the IETF refused to learn from the lessons
already gained from the years of experience with the telnet protocol.
--
-- Howard Chu
CTO, Symas Corp. http://www.symas.com
Director, Highland Sun http://highlandsun.com/hyc/
Chief Architect, OpenLDAP http://www.openldap.org/project/
More information about the openssh-unix-dev
mailing list