ECDSA and first connection; bug?

Dan Kaminsky dan at doxpara.com
Fri Jan 28 10:29:38 EST 2011


On Thu, Jan 27, 2011 at 3:20 PM, Damien Miller <djm at mindrot.org> wrote:
> On Thu, 27 Jan 2011, Dan Kaminsky wrote:
>
>> Would this add a RTT?  SSH is a little slow as is.
>
> No, it would just be an informational message sent from the server to the
> client probably right after the first SSH_MSG_NEWKEYS.
>
> -d
>

A message that said "BTW, here's my other host keys" would be
excellent.  Question:  If we know the ECC key for something, should we
no longer respect the RSA/DSA key?  My understanding is the ECC key is
stronger.


More information about the openssh-unix-dev mailing list