[Ach] KexAlgorithms: curve25519-sha256 at libssh.org

James Cloos cloos at jhcloos.com
Tue Jan 7 00:01:17 CET 2014


>>>>> "AZ" == Aaron Zauner <azet at azet.org> writes:

>> I just tested the KexAlgorithms again, and I can not get
>> 
>>> curve25519-sha256 at libssh.org

It is in the openbsd and portable-openssh cvs repos.

Expect it in the next release.

It works well.

Cvs also has the chacha20-poly1305 at openssh.com cipher and
ssh-ed25519-cert-v01 at openssh.com & ssh-ed25519 key pairs.

curve25519-sha256 at libssh.org depends on HAVE_EVP_SHA256
and is the highest pref kex when available.

The ed25519 keys are second in pref to ECDSA (but the ECDSA keys
are only available if OPENSSL_HAS_ECC; ed25519 is not so limited).

chacha20-poly1305 at openssh.com is lower in the default prefs.

-JimC
--
James Cloos <cloos at jhcloos.com>         OpenPGP: 1024D/ED7DAEA6
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 835 bytes
Desc: not available
URL: <http://lists.cert.at/pipermail/ach/attachments/20140106/d4d8fc60/attachment.sig>


More information about the Ach mailing list