[Bug 2302] with DH-GEX, ssh (and sshd) should not fall back to unconfigured DH groups or at least document this behaviour and use a stronger group
mancha
mancha1 at zoho.com
Tue Jun 16 08:45:48 AEST 2015
On Mon, Jun 15, 2015 at 05:31:23PM +0000, mancha wrote:
> Regarding Allen's last comment, I believe what he means is there
> doesn't appear to be a way to apply the methods of the index-calculus
> directly to the q-subgroup. In these subgroups, the state of the art
> algorithms have much lower O(n^(1/2)) runtimes.
I just noticed a most unfortunate typo in the above that inverts the
meaning. As most of you deduced, the sentence meant to say the
algorithms that can be used in the q-subgroup take longer: "In these
subgroups, the state of the art algorithms have much *slower* O(n^(1/2))
runtimes."
In contrast, when armed with the index calculus one is looking at a
complexity of L[1/3,(64/9)^(1/3)].
--mancha
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 819 bytes
Desc: not available
URL: <http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20150615/73e165e4/attachment.bin>
More information about the openssh-unix-dev
mailing list