[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Why only group1 diffie-hellman


On Friday 08 July 2011 13:39:42 you wrote:
> Hi all

Hi Gearoid,

> Is there a particular design decision behind only only supporting  group1
> diffie-hellman key exchange?

I don't think so, but we should support it.

> I would be interested in attempting the implementation for group14
> diffie-hellman kex for integration into the libssh mainline

RFC 4253 states that it MUST be supported. We would appreciate a patch for it. 
Recently Aris added support for ecdh-sha2-nistp256 kex in master. It shouldn't 
be to hard to add diffie-hellman-group14-sha1 now.


	-- andreas

-- 
Andreas Schneider                   GPG-ID: F33E3FC6
www.cryptomilk.org                asn@xxxxxxxxxxxxxx


Follow-Ups:
RE: Why only group1 diffie-hellman"Murphy, Gearoid P" <gearoid.murphy@xxxxxx>
References:
Why only group1 diffie-hellman"Murphy, Gearoid P" <gearoid.murphy@xxxxxx>
Archive administrator: postmaster@lists.cynapses.org