Securing SSH
Benjamin Kaduk
kaduk at MIT.EDU
Mon Jan 12 02:23:36 UTC 2015
The author also appears to not understand the difference between
single-DES and triple-DES, so I would expect the value of that posting to
be only as a brainstormed list of ideas to consider for further analysis.
-Ben
On Sun, 11 Jan 2015, Jonathan Anderson wrote:
> Hi,
>
> I can't comment much on the elliptic-curve stuff, but I think it's a bit of a
> stretch to say that SHA-1 isn't safe for use in a KDF.
>
> Just my two cents,
>
>
> Jon
>
> > Greg Rivers <mailto:gcr+freebsd-security at tharned.org>
> > 11 January 2015 at 21:52
> > I came across an interesting article[1] about more secure SSH
> > configurations. What do our resident cryptographers think about this?
> > Would it make sense to adjust FreeBSD defaults accordingly?
> >
> > [1] https://stribika.github.io/2015/01/04/secure-secure-shell.html
> >
>
> -- Jonathan Anderson
> jonathan at FreeBSD.org
> _______________________________________________
> freebsd-security at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-security
> To unsubscribe, send any mail to "freebsd-security-unsubscribe at freebsd.org"
>
More information about the freebsd-security
mailing list