[Ach] KexAlgorithms: curve25519-sha256 at libssh.org
Axel Hübl
axel.huebl at web.de
Tue Jan 7 09:52:01 CET 2014
If I am not mistaken, the changes already went in the main repo but the
pdf was not recompiled since Jan 4th :)
Best,
Axel
On 07.01.2014 09:48, Andy Wenk wrote:
> On 7 January 2014 00:56, Aaron Zauner <azet at azet.org
> <mailto:azet at azet.org>> wrote:
>
>
> James Cloos wrote:
> >>>> curve25519-sha256 at libssh.org <mailto:curve25519-sha256 at libssh.org>
> >
> > It is in the openbsd and portable-openssh cvs repos.
> >
> > Expect it in the next release.
> >
> > It works well.
> >
> > Cvs also has the chacha20-poly1305 at openssh.com
> <mailto:chacha20-poly1305 at openssh.com> cipher and
> > ssh-ed25519-cert-v01 at openssh.com
> <mailto:ssh-ed25519-cert-v01 at openssh.com> & ssh-ed25519 key pairs.
> >
> > curve25519-sha256 at libssh.org <mailto:curve25519-sha256 at libssh.org>
> depends on HAVE_EVP_SHA256
> > and is the highest pref kex when available.
> >
> > The ed25519 keys are second in pref to ECDSA (but the ECDSA keys
> > are only available if OPENSSL_HAS_ECC; ed25519 is not so limited).
> >
> > chacha20-poly1305 at openssh.com
> <mailto:chacha20-poly1305 at openssh.com> is lower in the default prefs.
>
> Thanks for clearing that up - I'll make sure to include it in our paper
> as soon the mentioned algorithms are in a OpenSSH release. I've read the
> mails regarding those ciphers on the openssh-dev ML and am excited that
> OpenSSH includes them.
>
>
> as I had problems with all the '@' ciphers, and Aaron thankfully helped
> me, I am wondering
> if it should be noted in the paragraph 2.2.1, that some of the ciphers
> are not available yet.
>
> --
> Andy Wenk
> Hamburg - Germany
> RockIt!
>
> http://www.couchdb-buch.de
> http://www.pg-praxisbuch.de
>
> GPG fingerprint: C044 8322 9E12 1483 4FEC 9452 B65D 6BE3 9ED3 9588
>
> https://people.apache.org/keys/committer/andywenk.asc
>
>
> _______________________________________________
> Ach mailing list
> Ach at lists.cert.at
> http://lists.cert.at/cgi-bin/mailman/listinfo/ach
>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3740 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.cert.at/pipermail/ach/attachments/20140107/e760c737/attachment.bin>
More information about the Ach
mailing list