Ship OpenSSH from wheezy-backports
A friendly cypherpunk asked whether Tails would like to ship the OpenSSH client from wheezy-backports. This backport supports:
- ed25519 keys
- chacha20-poly1305 as transport cipher
- bcrypt stretching of keys at rest
I would personally like to see Tails ship an openssh client which supports the generation of non-nist crypto to ssh into services.
I'd gladly answer any questions or implement it in a branch.
A friendly cypherpunk asked whether Tails would like to ship the OpenSSH client from wheezy-backports.
Fine with me. The backport seems to be maintained by the OpenSSH maintainer in Debian, which is confidence-inspiring.
Ok, i'll prepare a patch soon. I will also throw in an automated test, shall I move that to a separate ticket?
I will also throw in an automated test, shall I move that to a separate ticket?
No, let's say we'll take them together, or not at all :)
Sure, i'll give it a shot :-)
- Assignee set to Dr_Whax
- Type of work changed from Discuss to Code
- Related to Feature #7315: Remove custom SSH ciphers, MACs and HostKeyAlgorithms settings added
Ok, i'll prepare a patch soon.
Any news on that one, or better deassign yourself?
- Status changed from Confirmed to Rejected
Next Tails will be based on Jessie so this is not relevant anymore. But indeed we should update our ciphers etc. list: #7315.
Also available in: Atom