[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

RE: SSH2 Encryption

On Mon 10 Jun 2002 13:23, Anne Carasik wrote:

> This one time, Jeff Bonner wrote:

As in, "This one time, at band camp..."?  >;)  Also, sorry about
the wretched linebreaks, folks.  Good ol Outlook.

> Check the man page for what ciphers SSH2 accepts. I usually 
> leave it on Blowfish because it's secure and it's the fastest
> cipher. AES sucks because it's dog slow, and it doesn't buy
> you that much more security than Blowfish.

Well, the manpage for ssh(1) shows the following, under SSH2:

   "Protocol 2 provides additional mechanisms for
   confidentiality (the traf-fic is encrypted using
   3DES, Blowfish, CAST128 or Arcfour) and integrity
   (hmac-md5, hmac-sha1)...."

However, it seems this package does support all the ones I had
given originally, as I mention in my reply to Mark Janssen on
this list; they showed up in my daemon.log later.

> > 3) Any reason you *wouldn't* want to use compression in SSH?
> 
> Yes, if you're going over a high speed line, no reason to use
> compression. If you're connecting through a slow line (like a
> modem), use compression.

After reading the manpage to quote above, I noticed that it's
only applicable to SSH1 anyway, so I guess it doesn't matter.
:)

Thanks,

Jeff Bonner



-- 
To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Reply to: