SSH Agent keys >4096 bit?

Werner Koch wk at
Mon May 7 10:21:56 CEST 2012

On Sat,  5 May 2012 20:27, gnupg at said:

> Hm, shouldn't authentication happen before exchanging key for
> symmetric part of encryption during the SSH session?

No, DH is commonly (and by SSH) used as a key agreement protocol.  This
means that N and only N communication peers agree on a shared session
key.  It can't avoid a MitM attack and thus an additional authentication
step is required.



Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.

More information about the Gnupg-users mailing list