The author also appears to not understand the difference between single-DES and triple-DES, so I would expect the value of that posting to be only as a brainstormed list of ideas to consider for further analysis.
-Ben On Sun, 11 Jan 2015, Jonathan Anderson wrote: > Hi, > > I can't comment much on the elliptic-curve stuff, but I think it's a bit of a > stretch to say that SHA-1 isn't safe for use in a KDF. > > Just my two cents, > > > Jon > > > Greg Rivers <mailto:gcr+freebsd-secur...@tharned.org> > > 11 January 2015 at 21:52 > > I came across an interesting article[1] about more secure SSH > > configurations. What do our resident cryptographers think about this? > > Would it make sense to adjust FreeBSD defaults accordingly? > > > > [1] https://stribika.github.io/2015/01/04/secure-secure-shell.html > > > > -- Jonathan Anderson > jonat...@freebsd.org > _______________________________________________ > freebsd-security@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-security > To unsubscribe, send any mail to "freebsd-security-unsubscr...@freebsd.org" > _______________________________________________ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "freebsd-security-unsubscr...@freebsd.org"
