SSH Agent keys >4096 bit?
Werner Koch
wk at gnupg.org
Mon May 7 10:21:56 CEST 2012
On Sat, 5 May 2012 20:27, gnupg at oneiroi.net said:
> Hm, shouldn't authentication happen before exchanging key for
> symmetric part of encryption during the SSH session?
No, DH is commonly (and by SSH) used as a key agreement protocol. This
means that N and only N communication peers agree on a shared session
key. It can't avoid a MitM attack and thus an additional authentication
step is required.
Shalom-Salam,
Werner
--
Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz.
More information about the Gnupg-users
mailing list