LZ4 compression in openssh

Dan Kaminsky dan at doxpara.com
Sat Oct 26 07:52:24 EST 2013


Ciphertext is incompressible.

On Friday, October 25, 2013, Mark E. Lee wrote:

> I see.
>
> From reading that wikipedia article, I'm wondering what gets compressed
> when compression is enabled in openssh. Is it the ciphertext or the
> cleartext?
>
> Regards,
> Mark
>
> On Fri, 2013-10-25 at 15:47 -0400, Daniel Kahn Gillmor wrote:
> > On 10/25/2013 03:23 PM, Mark E. Lee wrote:
> > > Thanks for the response, what kind of problematic interactions would
> > > occur (other than trying to compress seemingly random data)?
> >
> > e.g. https://en.wikipedia.org/wiki/CRIME or similar attacks where the
> > attacker can inject pre-defined cleartext into the channel and can then
> > observe length changes in the ciphertext to derive the other
> > (non-injected) contents of the cleartext.
> >
> >       --dkg
> >
> > _______________________________________________
> > openssh-unix-dev mailing list
> > openssh-unix-dev at mindrot.org <javascript:;>
> > https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev
>
> --
> Mark E. Lee <mark at markelee.com <javascript:;>>
>


More information about the openssh-unix-dev mailing list