|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
CVS: cvs.openbsd.org: src
From: Markus Friedl (markus
cvs.openbsd.org)
Date: Tue Apr 01 2003 - 04:10:24 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
CVSROOT: /cvs
Module name: src
Changes by: markuscvs.openbsd.org 2003/04/01 03:10:24
Modified files:
usr.bin/ssh : clientloop.c monitor.c monitor_wrap.c packet.c
packet.h readconf.c readconf.h serverloop.c
sshconnect2.c
Log message:
rekeying bugfixes and automatic rekeying:
* both client and server rekey _automatically_
(a) after 2^31 packets, because after 2^32 packets
the sequence number for packets wraps
(b) after 2^(blocksize_in_bits/4) blocks
(see: http://www.ietf.org/internet-drafts/draft-ietf-secsh-newmodes-00.txt)
(a) and (b) are _enabled_ by default, and only disabled for known
openssh versions, that don't support rekeying properly.
* client option 'RekeyLimit'
* do not reply to requests during rekeying
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]