From owner-freebsd-security  Mon Jan  3  0:31:28 2000
Delivered-To: freebsd-security@freebsd.org
Received: from toad.mindrot.org (intern12.lnk.telstra.net [139.130.53.38])
	by hub.freebsd.org (Postfix) with ESMTP
	id 8BB1C14E97; Mon,  3 Jan 2000 00:31:19 -0800 (PST)
	(envelope-from djm@mindrot.org)
Received: from mothra.mindrot.org (mothra.mindrot.org [203.36.198.97])
	by toad.mindrot.org (Postfix) with ESMTP
	id 84AB026F90; Mon,  3 Jan 2000 19:31:06 +1100 (EST)
Received: by mothra.mindrot.org (Postfix, from userid 500)
	id E190827444; Mon,  3 Jan 2000 19:31:02 +1100 (EST)
Received: from localhost (localhost [127.0.0.1])
	by mothra.mindrot.org (Postfix) with ESMTP
	id C9DE21792C; Mon,  3 Jan 2000 19:31:02 +1100 (EST)
Date: Mon, 3 Jan 2000 19:30:58 +1100 (EST)
From: Damien Miller <djm@mindrot.org>
To: Robert Watson <robert+freebsd@cyrus.watson.org>
Cc: David Rankin <drankin@bohemians.lexington.ky.us>,
	Brian Fundakowski Feldman <green@FreeBSD.org>,
	"Michael H. Warfield" <mhw@wittsend.com>,
	Dug Song <dugsong@monkey.org>, security@FreeBSD.org,
	openssh-unix-dev@mindrot.org
Subject: Re: OpenSSH protocol 1.6 proposal
In-Reply-To: <Pine.BSF.3.96.1000103022509.7881A-100000@fledge.watson.org>
Message-ID: <Pine.LNX.4.10.10001031922560.661-100000@mothra.mindrot.org>
X-Paranoia: just because you're paranoid doesn't mean they aren't out to get you
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Mon, 3 Jan 2000, Robert Watson wrote:

> I agree entirely.  I'd love to see a free, BSD-licensed, SSH 2.x
> implementation out there.  The continuing emphasis on improving the
> non-standard, albeit widely deployed, SSH 1.x protocol seems to be
> a less useful allocation of resources.  While a free version of 1.x
> is extremely useful, it's not the end-all. :-) If you can get people
> to upgrade to modified 1.x with backwards compatibility, wouldn't
> you be better served getting them to upgrade to 2.x with backwards
> compatibility? :-)

While I agree that a free version of SSH 2.x is a worthwhile goal,
it will take _months_ of effort (of course I would be happy to be 
proved wrong on this).

We already have a strong SSH 1.x implementation, why not clean up its
few remaining nits (which may take only weeks)?

Apart from standards-compliance, what does SSH2 buy you over a cleaned
up SSH1?

Regards,
Damien Miller

- --
| "Bombay is 250ms from New York in the new world order" - Alan Cox
| Damien Miller - http://www.mindrot.org/
| Email: djm@mindrot.org (home) -or- djm@ibs.com.au (work)


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.0 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE4cF5GormJ9RG1dI8RAooeAKCz3U4Riz1CL1ikvlWVfkTdZAU0MQCfcli1
mMn9rFYT50BnvFFIKEFZDiY=
=bL3g
-----END PGP SIGNATURE-----



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message