djm   20

Damien Miller (djm@) Responds to Plaintext Recovery Attack Against SSH
"A future version of OpenSSH may make CTR mode ciphers the default and/or implement other countermeasures, but at present we do not feel that this issue is serious enough to make an emergency release. " Why not using AES-CCM? maybe just because they keep relying of the MAC of the SSH packet itself?
openssh  ssh  vulnerability  crypto  cryptography  plaintext_recovery  djm 
november 2008 by adulau

related tags

[delicious-do_not_delete]  apostles  archived  bookmarks_bar  bookmarks_menu  canvas  catholicism  cdj  crypto  cryptography  disciples  djset  dnb  drumandbass  drumstep  edm  electrohouse  engine  favorites  game  gamedev  html5  javascript  js  melbourneboun  openssh  personal  pioneer  plaintext_recovery  pol  progressivehouse  ssh  vulnerability 

Copy this bookmark: