Hi,
I can't comment much on the elliptic-curve stuff, but I think it's a bit
of a stretch to say that SHA-1 isn't safe for use in a KDF.
Just my two cents,
Jon
Greg Rivers <mailto:gcr+freebsd-secur...@tharned.org>
11 January 2015 at 21:52
I came across an interesting article[1] about more secure SSH
configurations. What do our resident cryptographers think about this?
Would it make sense to adjust FreeBSD defaults accordingly?
[1] https://stribika.github.io/2015/01/04/secure-secure-shell.html
-- Jonathan Anderson
jonat...@freebsd.org
_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscr...@freebsd.org"
