[Ach] KexAlgorithms: curve25519-sha256 at libssh.org

Andy Wenk andy at nms.de
Tue Jan 7 09:56:18 CET 2014 

On 7 January 2014 09:52, Axel Hübl <axel.huebl at web.de> wrote:

> If I am not mistaken, the changes already went in the main repo but the
> pdf was not recompiled since Jan 4th :)
>
> Best,
> Axel
>

ah cool :-) - I did not compile it myself ... so releasing it would resolve
a lot of pain ion the a.. for many people :)



> On 07.01.2014 09:48, Andy Wenk wrote:
> > On 7 January 2014 00:56, Aaron Zauner <azet at azet.org
> > <mailto:azet at azet.org>> wrote:
> >
> >
> >     James Cloos wrote:
> >     >>>> curve25519-sha256 at libssh.org <mailto:
> curve25519-sha256 at libssh.org>
> >     >
> >     > It is in the openbsd and portable-openssh cvs repos.
> >     >
> >     > Expect it in the next release.
> >     >
> >     > It works well.
> >     >
> >     > Cvs also has the chacha20-poly1305 at openssh.com
> >     <mailto:chacha20-poly1305 at openssh.com> cipher and
> >     > ssh-ed25519-cert-v01 at openssh.com
> >     <mailto:ssh-ed25519-cert-v01 at openssh.com> & ssh-ed25519 key pairs.
> >     >
> >     > curve25519-sha256 at libssh.org <mailto:curve25519-sha256 at libssh.org>
> >     depends on HAVE_EVP_SHA256
> >     > and is the highest pref kex when available.
> >     >
> >     > The ed25519 keys are second in pref to ECDSA (but the ECDSA keys
> >     > are only available if OPENSSL_HAS_ECC; ed25519 is not so limited).
> >     >
> >     > chacha20-poly1305 at openssh.com
> >     <mailto:chacha20-poly1305 at openssh.com> is lower in the default
> prefs.
> >
> >     Thanks for clearing that up - I'll make sure to include it in our
> paper
> >     as soon the mentioned algorithms are in a OpenSSH release. I've read
> the
> >     mails regarding those ciphers on the openssh-dev ML and am excited
> that
> >     OpenSSH includes them.
> >
> >
> > as I had problems with all the '@' ciphers, and Aaron thankfully helped
> > me, I am wondering
> > if it should be noted in the paragraph 2.2.1, that some of the ciphers
> > are not available yet.
> >
> > --
> > Andy Wenk
> > Hamburg - Germany
> > RockIt!
> >
> > http://www.couchdb-buch.de
> > http://www.pg-praxisbuch.de
> >
> > GPG fingerprint: C044 8322 9E12 1483 4FEC 9452 B65D 6BE3 9ED3 9588
> >
> > https://people.apache.org/keys/committer/andywenk.asc
> >
> >
> > _______________________________________________
> > Ach mailing list
> > Ach at lists.cert.at
> > http://lists.cert.at/cgi-bin/mailman/listinfo/ach
> >
>
>
> _______________________________________________
> Ach mailing list
> Ach at lists.cert.at
> http://lists.cert.at/cgi-bin/mailman/listinfo/ach
>
>


-- 
Andy Wenk
Hamburg - Germany
RockIt!

http://www.couchdb-buch.de
http://www.pg-praxisbuch.de

GPG fingerprint: C044 8322 9E12 1483 4FEC 9452 B65D 6BE3 9ED3 9588

https://people.apache.org/keys/committer/andywenk.asc
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cert.at/pipermail/ach/attachments/20140107/a0301a1b/attachment.html>

More information about the Ach mailing list