Bug#774711: openssh: OpenSSH should have stronger ciphers selected at least on the server side.

To: 774711@bugs.debian.org
Subject: Bug#774711: openssh: OpenSSH should have stronger ciphers selected at least on the server side.
From: Jens Thiele <karme@karme.de>
Date: Thu, 21 May 2015 10:30:38 +0200
Message-id: <[🔎] 87iobm9vtd.fsf@karme.de>
Reply-to: Jens Thiele <karme@karme.de>, 774711@bugs.debian.org
In-reply-to: <1420664308.4847.95.camel@scientia.net> (Christoph Anton Mitterer's message of "Wed, 07 Jan 2015 21:58:28 +0100")
References: <1420664308.4847.95.camel@scientia.net>

see also:
https://www.weakdh.org/
The Logjam Attack
https://www.weakdh.org/imperfect-forward-secrecy.pdf
"
Is NSA Breaking 1024-bit DH?

Our calculations suggest that it is plausibly within NSA’s resources to
have performed number field sieve precomputations for at least a small
number of 1024-bit Diffie-Hellman groups. This would allow them to break
any key exchanges made with those groups in close to real time.
"

Reply to:

Follow-Ups:
- Bug#774711: openssh: OpenSSH should have stronger ciphers selected at least on the server side.
  - From: Matthew Vernon <matthew@debian.org>

Prev by Date: Bug#785190: new upstream (6.8p1)
Next by Date: Bug#774711: openssh: OpenSSH should have stronger ciphers selected at least on the server side.
Previous by thread: Bug#785190: new upstream (6.8p1)
Next by thread: Bug#774711: openssh: OpenSSH should have stronger ciphers selected at least on the server side.
Index(es):
- Date
- Thread