[Ach] KexAlgorithms: curve25519-sha256 at libssh.org
Andy Wenk
andy at nms.de
Tue Jan 7 09:48:43 CET 2014
On 7 January 2014 00:56, Aaron Zauner <azet at azet.org> wrote:
>
> James Cloos wrote:
> >>>> curve25519-sha256 at libssh.org
> >
> > It is in the openbsd and portable-openssh cvs repos.
> >
> > Expect it in the next release.
> >
> > It works well.
> >
> > Cvs also has the chacha20-poly1305 at openssh.com cipher and
> > ssh-ed25519-cert-v01 at openssh.com & ssh-ed25519 key pairs.
> >
> > curve25519-sha256 at libssh.org depends on HAVE_EVP_SHA256
> > and is the highest pref kex when available.
> >
> > The ed25519 keys are second in pref to ECDSA (but the ECDSA keys
> > are only available if OPENSSL_HAS_ECC; ed25519 is not so limited).
> >
> > chacha20-poly1305 at openssh.com is lower in the default prefs.
>
> Thanks for clearing that up - I'll make sure to include it in our paper
> as soon the mentioned algorithms are in a OpenSSH release. I've read the
> mails regarding those ciphers on the openssh-dev ML and am excited that
> OpenSSH includes them.
>
as I had problems with all the '@' ciphers, and Aaron thankfully helped me,
I am wondering
if it should be noted in the paragraph 2.2.1, that some of the ciphers are
not available yet.
--
Andy Wenk
Hamburg - Germany
RockIt!
http://www.couchdb-buch.de
http://www.pg-praxisbuch.de
GPG fingerprint: C044 8322 9E12 1483 4FEC 9452 B65D 6BE3 9ED3 9588
https://people.apache.org/keys/committer/andywenk.asc
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cert.at/pipermail/ach/attachments/20140107/97add557/attachment.html>
More information about the Ach
mailing list