[Cryptography] Why aren’t we using SSH for everything?

Christoph Anton Mitterer calestyo at scientia.net
Sun Jan 4 01:51:42 EST 2015

On Sun, 2015-01-04 at 18:54 +1300, Peter Gutmann wrote: 
> TLS finally fixed this after a year-long battle to get the change accepted.  I
> also suggested it to the SSH folks but they weren't interested, and after the
> fight it took to get it into TLS I just didn't have the energy to go through
> the same thing for SSH.

$ ssh -Q cipher-auth
aes128-gcm at openssh.com
aes256-gcm at openssh.com
chacha20-poly1305 at openssh.com

$ ssh -Q mac | grep etm
hmac-sha1-etm at openssh.com
hmac-sha1-96-etm at openssh.com
hmac-sha2-256-etm at openssh.com
hmac-sha2-512-etm at openssh.com
hmac-md5-etm at openssh.com
hmac-md5-96-etm at openssh.com
hmac-ripemd160-etm at openssh.com
umac-64-etm at openssh.com
umac-128-etm at openssh.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 5313 bytes
Desc: not available
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20150104/ad3ea0a5/attachment.bin>

More information about the cryptography mailing list