IETF Logo Mail Archive

Re: draft-harris-ssh-arcfour-fixes-02: informational or proposed?

"william(at)elan.net" <william@elan.net> Thu, 02 June 2005 09:31 UTC

Received: from localhost.localdomain ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1Ddm34-0006JV-M0; Thu, 02 Jun 2005 05:31:34 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1Ddm33-0006JQ-3d for ietf@megatron.ietf.org; Thu, 02 Jun 2005 05:31:33 -0400
Received: from ietf-mx.ietf.org (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id FAA23609 for <ietf@ietf.org>; Thu, 2 Jun 2005 05:31:30 -0400 (EDT)
Received: from sokol.elan.net ([216.151.192.200]) by ietf-mx.ietf.org with esmtp (Exim 4.33) id 1DdmN2-0001VO-66 for ietf@ietf.org; Thu, 02 Jun 2005 05:52:13 -0400
Received: from sokol.elan.net (sokol [127.0.0.1]) by sokol.elan.net (8.13.1/8.13.1) with ESMTP id j529VO0Q031042; Thu, 2 Jun 2005 02:31:26 -0700
Received: from localhost (william@localhost) by sokol.elan.net (8.13.1/8.13.1/Submit) with ESMTP id j529VNwl031039; Thu, 2 Jun 2005 02:31:24 -0700
X-Authentication-Warning: sokol.elan.net: william owned process doing -bs
Date: Thu, 02 Jun 2005 02:31:23 -0700
From: "william(at)elan.net" <william@elan.net>
To: Keith Moore <moore@cs.utk.edu>
In-Reply-To: <20050601144334.0165488d.moore@cs.utk.edu>
Message-ID: <Pine.LNX.4.62.0506020227100.27968@sokol.elan.net>
References: <tsloeaqgc2s.fsf@cz.mit.edu> <20050601144334.0165488d.moore@cs.utk.edu>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset="US-ASCII"; format="flowed"
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 7655788c23eb79e336f5f8ba8bce7906
Cc: ietf@ietf.org
Subject: Re: draft-harris-ssh-arcfour-fixes-02: informational or proposed?
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
Sender: ietf-bounces@ietf.org
Errors-To: ietf-bounces@ietf.org

On Wed, 1 Jun 2005, Keith Moore wrote:

>> The argument in favor of publishing this document at proposed is that
>> the existing arcfour cipher is part of a standard and that many other
>> IETF protocols use rc4 in standards track documents.
>
> previous mistakes are not valid justifications for new mistakes.
> previous accidents are not valid justifications for deliberately weakening
> new products.

Keith,

I think you're right in general. But in this specific case its not a
"new product". SSH already uses RC4, the change is increasing size
of key that maybe used. Admittedly it does not fix problems with SSH
using RC4 in general, but the update provide for better security
then current system and is definitely not weakening it.

-- 
William Leibzon
Elan Networks
william@elan.net

_______________________________________________
Ietf mailing list
Ietf@ietf.org
https://www1.ietf.org/mailman/listinfo/ietf

v2.23.0 | Report a Bug | By Email