Damien Miller <d...@cvs.openbsd.org> wrote: > Modified files: > usr.bin/ssh : myproposal.h > > Log message: > prefer CTR modes and revised arcfour (i.e w/ discard) modes to CBC > modes; ok markus@
This means that ssh's default cipher will no longer profit from hifn(4) or glxsb(4) acceleration. People relying on such hardware acceleration will have to weigh that benefit against the risk associated with using AES-CBC: http://www.openssh.com/txt/cbc.adv In the absence of hardware acceleration, AES-CTR and AES-CBC perform the same. -- Christian "naddy" Weisgerber na...@mips.inka.de
