For applications where encryption is unneeded, undesired, or even
prohibited, but session integrity is absolutely required, it would be useful
to allow version 2 connect with MAC but without a cipher.
(Unfortunately, this looks to be fairly difficult as the SSH_CRYPT_NONE
protocol has been assigned a constant which makes negotiation not so much
fun)...
--
Brian Ristuccia
<email address hidden>
<email address hidden>
For applications where encryption is unneeded, undesired, or even
prohibited, but session integrity is absolutely required, it would be useful
to allow version 2 connect with MAC but without a cipher.
(Unfortunately, this looks to be fairly difficult as the SSH_CRYPT_NONE
protocol has been assigned a constant which makes negotiation not so much
fun)...
--
Brian Ristuccia
<email address hidden>
<email address hidden>