diff options
| -rw-r--r-- | ChangeLog | 6 | ||||
| -rw-r--r-- | myproposal.h | 8 | ||||
| -rw-r--r-- | ssh.1 | 8 |
3 files changed, 13 insertions, 9 deletions
| @@ -6,6 +6,10 @@ | |||
| 6 | - stevesk@cvs.openbsd.org 2001/03/05 15:44:51 | 6 | - stevesk@cvs.openbsd.org 2001/03/05 15:44:51 |
| 7 | [servconf.c] | 7 | [servconf.c] |
| 8 | sync error message; ok markus@ | 8 | sync error message; ok markus@ |
| 9 | - deraadt@cvs.openbsd.org 2001/03/05 15:56:16 | ||
| 10 | [myproposal.h ssh.1] | ||
| 11 | switch to aes128-cbc/hmac-md5 by default in SSH2 -- faster; | ||
| 12 | provos & markus ok | ||
| 9 | 13 | ||
| 10 | 20010305 | 14 | 20010305 |
| 11 | - (bal) CVS ID touch up on sshpty.[ch] and sshlogin.[ch] | 15 | - (bal) CVS ID touch up on sshpty.[ch] and sshlogin.[ch] |
| @@ -4377,4 +4381,4 @@ | |||
| 4377 | - Wrote replacements for strlcpy and mkdtemp | 4381 | - Wrote replacements for strlcpy and mkdtemp |
| 4378 | - Released 1.0pre1 | 4382 | - Released 1.0pre1 |
| 4379 | 4383 | ||
| 4380 | $Id: ChangeLog,v 1.910 2001/03/06 01:02:41 mouring Exp $ | 4384 | $Id: ChangeLog,v 1.911 2001/03/06 01:05:23 mouring Exp $ |
diff --git a/myproposal.h b/myproposal.h index 03f76839b..4a9a36370 100644 --- a/myproposal.h +++ b/myproposal.h | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | /* $OpenBSD: myproposal.h,v 1.11 2001/02/11 12:59:24 markus Exp $ */ | 1 | /* $OpenBSD: myproposal.h,v 1.12 2001/03/05 15:56:16 deraadt Exp $ */ |
| 2 | 2 | ||
| 3 | /* | 3 | /* |
| 4 | * Copyright (c) 2000 Markus Friedl. All rights reserved. | 4 | * Copyright (c) 2000 Markus Friedl. All rights reserved. |
| @@ -26,12 +26,12 @@ | |||
| 26 | #define KEX_DEFAULT_KEX "diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1" | 26 | #define KEX_DEFAULT_KEX "diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1" |
| 27 | #define KEX_DEFAULT_PK_ALG "ssh-rsa,ssh-dss" | 27 | #define KEX_DEFAULT_PK_ALG "ssh-rsa,ssh-dss" |
| 28 | #define KEX_DEFAULT_ENCRYPT \ | 28 | #define KEX_DEFAULT_ENCRYPT \ |
| 29 | "3des-cbc,blowfish-cbc,cast128-cbc,arcfour," \ | 29 | "aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour," \ |
| 30 | "aes128-cbc,aes192-cbc,aes256-cbc," \ | 30 | "aes192-cbc,aes256-cbc," \ |
| 31 | "rijndael128-cbc,rijndael192-cbc,rijndael256-cbc," \ | 31 | "rijndael128-cbc,rijndael192-cbc,rijndael256-cbc," \ |
| 32 | "rijndael-cbc@lysator.liu.se" | 32 | "rijndael-cbc@lysator.liu.se" |
| 33 | #define KEX_DEFAULT_MAC \ | 33 | #define KEX_DEFAULT_MAC \ |
| 34 | "hmac-sha1,hmac-md5,hmac-ripemd160," \ | 34 | "hmac-md5,hmac-sha1,hmac-ripemd160," \ |
| 35 | "hmac-ripemd160@openssh.com," \ | 35 | "hmac-ripemd160@openssh.com," \ |
| 36 | "hmac-sha1-96,hmac-md5-96" | 36 | "hmac-sha1-96,hmac-md5-96" |
| 37 | #define KEX_DEFAULT_COMP "none,zlib" | 37 | #define KEX_DEFAULT_COMP "none,zlib" |
| @@ -34,7 +34,7 @@ | |||
| 34 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF | 34 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF |
| 35 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. | 35 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
| 36 | .\" | 36 | .\" |
| 37 | .\" $OpenBSD: ssh.1,v 1.93 2001/03/02 18:54:31 deraadt Exp $ | 37 | .\" $OpenBSD: ssh.1,v 1.94 2001/03/05 15:56:16 deraadt Exp $ |
| 38 | .Dd September 25, 1999 | 38 | .Dd September 25, 1999 |
| 39 | .Dt SSH 1 | 39 | .Dt SSH 1 |
| 40 | .Os | 40 | .Os |
| @@ -228,7 +228,7 @@ S/Key authentication. | |||
| 228 | .Pp | 228 | .Pp |
| 229 | Protocol 2 provides additional mechanisms for confidentiality | 229 | Protocol 2 provides additional mechanisms for confidentiality |
| 230 | (the traffic is encrypted using 3DES, Blowfish, CAST128 or Arcfour) | 230 | (the traffic is encrypted using 3DES, Blowfish, CAST128 or Arcfour) |
| 231 | and integrity (hmac-sha1, hmac-md5). | 231 | and integrity (hmac-md5, hmac-sha1). |
| 232 | Note that protocol 1 lacks a strong mechanism for ensuring the | 232 | Note that protocol 1 lacks a strong mechanism for ensuring the |
| 233 | integrity of the connection. | 233 | integrity of the connection. |
| 234 | .Pp | 234 | .Pp |
| @@ -667,7 +667,7 @@ Multiple ciphers must be comma-separated. | |||
| 667 | The default is | 667 | The default is |
| 668 | .Pp | 668 | .Pp |
| 669 | .Bd -literal | 669 | .Bd -literal |
| 670 | ``3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes128-cbc, | 670 | ``aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour, |
| 671 | aes192-cbc,aes256-cbc,rijndael128-cbc,rijndael192-cbc, | 671 | aes192-cbc,aes256-cbc,rijndael128-cbc,rijndael192-cbc, |
| 672 | rijndael256-cbc,rijndael-cbc@lysator.liu.se'' | 672 | rijndael256-cbc,rijndael-cbc@lysator.liu.se'' |
| 673 | .Ed | 673 | .Ed |
| @@ -831,7 +831,7 @@ Multiple algorithms must be comma-separated. | |||
| 831 | The default is | 831 | The default is |
| 832 | .Pp | 832 | .Pp |
| 833 | .Bd -literal | 833 | .Bd -literal |
| 834 | ``hmac-sha1,hmac-md5,hmac-ripemd160,hmac-ripemd160@openssh.com, | 834 | ``hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com, |
| 835 | hmac-sha1-96,hmac-md5-96'' | 835 | hmac-sha1-96,hmac-md5-96'' |
| 836 | .Ed | 836 | .Ed |
| 837 | .It Cm NumberOfPasswordPrompts | 837 | .It Cm NumberOfPasswordPrompts |