[Bug 2729] Can connect with MAC hmac-sha1 even though it's not configured on the server
bugzilla-daemon at bugzilla.mindrot.org
bugzilla-daemon at bugzilla.mindrot.org
Wed Jun 14 14:02:39 AEST 2017
https://bugzilla.mindrot.org/show_bug.cgi?id=2729
--- Comment #6 from Damien Miller <djm at mindrot.org> ---
Yes, see also the PROTOCOL file:
> AES-GCM is only negotiated as the cipher algorithms
> "aes128-gcm at openssh.com" or "aes256-gcm at openssh.com" and never as
> an MAC algorithm. Additionally, if AES-GCM is selected as the cipher
> the exchanged MAC algorithms are ignored and there doesn't have to be
> a matching MAC.
and PROTOCOL.chacha20poly1305:
> The chacha20-poly1305 at openssh.com offers both encryption and
> authentication. As such, no separate MAC is required. If the
> chacha20-poly1305 at openssh.com cipher is selected in key exchange,
> the offered MAC algorithms are ignored and no MAC is required to be
> negotiated.
--
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.
More information about the openssh-bugs
mailing list