From e45796f7b425c04b6ba2d1f72e22c0cb6b3322ef Mon Sep 17 00:00:00 2001
From: Damien Miller <djm@mindrot.org>
Date: Mon, 11 Jun 2007 14:01:42 +1000
Subject:    - pvalchev@cvs.openbsd.org 2007/06/07 19:37:34      [kex.h mac.c
 mac.h monitor_wrap.c myproposal.h packet.c ssh.1]      [ssh_config.5 sshd.8
 sshd_config.5]      Add a new MAC algorithm for data integrity, UMAC-64 (not
 default yet,      must specify umac-64@openssh.com). Provides about 20%
 end-to-end speedup      compared to hmac-md5. Represents a different approach
 to message      authentication to that of HMAC that may be beneficial if HMAC
 based on      one of its underlying hash algorithms is found to be vulnerable
 to a      new attack.  http://www.ietf.org/rfc/rfc4418.txt      in
 conjunction with and OK djm@

---
 myproposal.h | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

(limited to 'myproposal.h')

diff --git a/myproposal.h b/myproposal.h
index e246e0dd9..87a9e5820 100644
--- a/myproposal.h
+++ b/myproposal.h
@@ -1,4 +1,4 @@
-/* $OpenBSD: myproposal.h,v 1.21 2006/03/25 22:22:43 djm Exp $ */
+/* $OpenBSD: myproposal.h,v 1.22 2007/06/07 19:37:34 pvalchev Exp $ */
 
 /*
  * Copyright (c) 2000 Markus Friedl.  All rights reserved.
@@ -47,7 +47,7 @@
 	"aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se," \
 	"aes128-ctr,aes192-ctr,aes256-ctr"
 #define	KEX_DEFAULT_MAC \
-	"hmac-md5,hmac-sha1,hmac-ripemd160," \
+	"hmac-md5,hmac-sha1,umac-64@openssh.com,hmac-ripemd160," \
 	"hmac-ripemd160@openssh.com," \
 	"hmac-sha1-96,hmac-md5-96"
 #define	KEX_DEFAULT_COMP	"none,zlib@openssh.com,zlib"
-- 
cgit v1.2.3