From owner-cvs-all  Mon Feb 12  3: 4:26 2001
Delivered-To: cvs-all@freebsd.org
Received: from obsecurity.dyndns.org (adsl-63-207-60-67.dsl.lsan03.pacbell.net [63.207.60.67])
	by hub.freebsd.org (Postfix) with ESMTP
	id 154B937B491; Mon, 12 Feb 2001 03:04:14 -0800 (PST)
Received: by obsecurity.dyndns.org (Postfix, from userid 1000)
	id 56D8A66B32; Mon, 12 Feb 2001 03:04:13 -0800 (PST)
Date: Mon, 12 Feb 2001 03:04:12 -0800
From: Kris Kennaway <kris@obsecurity.org>
To: Andrea Campi <andrea@webcom.it>
Cc: Kris Kennaway <kris@FreeBSD.org>, cvs-committers@FreeBSD.org,
	cvs-all@FreeBSD.org
Subject: Re: cvs commit: src/crypto/openssh rsa.c rsa.h ssh-agent.c sshconnect1.c sshd.c
Message-ID: <20010212030412.A29837@mollari.cthul.hu>
References: <200102120644.f1C6iqj18540@freefall.freebsd.org> <20010212114505.B631@webcom.it>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-md5;
	protocol="application/pgp-signature"; boundary="gKMricLos+KVdGMg"
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <20010212114505.B631@webcom.it>; from andrea@webcom.it on Mon, Feb 12, 2001 at 11:45:06AM +0100
Sender: owner-cvs-all@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG


--gKMricLos+KVdGMg
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Mon, Feb 12, 2001 at 11:45:06AM +0100, Andrea Campi wrote:
> >   Modified files:
> >     crypto/openssh       rsa.c rsa.h ssh-agent.c sshconnect1.c=20
> >                          sshd.c=20
> >   Log:
> >   Patches backported from later development version of OpenSSH which pr=
event
> >   (instead of just mitigating through connection limits) the Bleichenba=
cher
> >   attack which can lead to guessing of the server key (not host key) by
> >   regenerating it when an RSA failure is detected.
>=20
> Haven't actually tested this given -CURRENT breakage so I might say somet=
hing
> stupid but...
>=20
> What happens if an attacker is able to trigger regeneration tens or hundr=
eds of
> times per second? I think there is opportunity for a DOS if this isn't do=
ne
> properly!

Connections are rate-limited - we tested this and found it not to be an iss=
ue.

Kris

--gKMricLos+KVdGMg
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.4 (FreeBSD)
Comment: For info see http://www.gnupg.org

iD8DBQE6h8MsWry0BWjoQKURAuo3AKDsocXPFdsPcY0SNdzuMcRmfP8MxACgrWcm
vPkmTTO1Vnub7r68vOrJx+g=
=BKVv
-----END PGP SIGNATURE-----

--gKMricLos+KVdGMg--


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message