[Ach] KexAlgorithms: curve25519-sha256 at libssh.org

Axel Hübl axel.huebl at web.de
Tue Jan 7 09:52:01 CET 2014 

If I am not mistaken, the changes already went in the main repo but the
pdf was not recompiled since Jan 4th :)

Best,
Axel
On 07.01.2014 09:48, Andy Wenk wrote:
> On 7 January 2014 00:56, Aaron Zauner <azet at azet.org
> <mailto:azet at azet.org>> wrote:
> 
> 
>     James Cloos wrote:
>     >>>> curve25519-sha256 at libssh.org <mailto:curve25519-sha256 at libssh.org>
>     >
>     > It is in the openbsd and portable-openssh cvs repos.
>     >
>     > Expect it in the next release.
>     >
>     > It works well.
>     >
>     > Cvs also has the chacha20-poly1305 at openssh.com
>     <mailto:chacha20-poly1305 at openssh.com> cipher and
>     > ssh-ed25519-cert-v01 at openssh.com
>     <mailto:ssh-ed25519-cert-v01 at openssh.com> & ssh-ed25519 key pairs.
>     >
>     > curve25519-sha256 at libssh.org <mailto:curve25519-sha256 at libssh.org>
>     depends on HAVE_EVP_SHA256
>     > and is the highest pref kex when available.
>     >
>     > The ed25519 keys are second in pref to ECDSA (but the ECDSA keys
>     > are only available if OPENSSL_HAS_ECC; ed25519 is not so limited).
>     >
>     > chacha20-poly1305 at openssh.com
>     <mailto:chacha20-poly1305 at openssh.com> is lower in the default prefs.
> 
>     Thanks for clearing that up - I'll make sure to include it in our paper
>     as soon the mentioned algorithms are in a OpenSSH release. I've read the
>     mails regarding those ciphers on the openssh-dev ML and am excited that
>     OpenSSH includes them.
> 
> 
> as I had problems with all the '@' ciphers, and Aaron thankfully helped
> me, I am wondering 
> if it should be noted in the paragraph 2.2.1, that some of the ciphers
> are not available yet.
> 
> -- 
> Andy Wenk
> Hamburg - Germany
> RockIt!
> 
> http://www.couchdb-buch.de
> http://www.pg-praxisbuch.de
> 
> GPG fingerprint: C044 8322 9E12 1483 4FEC 9452 B65D 6BE3 9ED3 9588
> 
> https://people.apache.org/keys/committer/andywenk.asc
> 
> 
> _______________________________________________
> Ach mailing list
> Ach at lists.cert.at
> http://lists.cert.at/cgi-bin/mailman/listinfo/ach
> 

-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3740 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.cert.at/pipermail/ach/attachments/20140107/e760c737/attachment.bin>

More information about the Ach mailing list