View | Details | Raw Unified | Return to bug 1580
Collapse All | Expand All

(-)myproposal.h (-1 / +1 lines)
Lines 48-54 Link Here
48 
	"aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc," \
 48 
	"aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc," \
49 
	"aes192-cbc,aes256-cbc,arcfour,rijndael-cbc@lysator.liu.se"
 49 
	"aes192-cbc,aes256-cbc,arcfour,rijndael-cbc@lysator.liu.se"
50 
#define	KEX_DEFAULT_MAC \
 50 
#define	KEX_DEFAULT_MAC \
51 
	"hmac-md5,hmac-sha1,umac-64@openssh.com,hmac-ripemd160," \
 51 
	"hmac-sha1,hmac-md5,umac-64@openssh.com,hmac-ripemd160," \
52 
	"hmac-ripemd160@openssh.com," \
 52 
	"hmac-ripemd160@openssh.com," \
53 
	"hmac-sha1-96,hmac-md5-96"
 53 
	"hmac-sha1-96,hmac-md5-96"
54 
#define	KEX_DEFAULT_COMP	"none,zlib@openssh.com,zlib"
 54 
#define	KEX_DEFAULT_COMP	"none,zlib@openssh.com,zlib"
(-)ssh.1 (-1 / +1 lines)
Lines 699-705 Link Here
699 
but protocol 2 is preferred since
 699 
but protocol 2 is preferred since
700 
it provides additional mechanisms for confidentiality
 700 
it provides additional mechanisms for confidentiality
701 
(the traffic is encrypted using AES, 3DES, Blowfish, CAST128, or Arcfour)
 701 
(the traffic is encrypted using AES, 3DES, Blowfish, CAST128, or Arcfour)
702 
and integrity (hmac-md5, hmac-sha1, umac-64, hmac-ripemd160).
 702 
and integrity (hmac-sha1, hmac-md5, umac-64, hmac-ripemd160).
703 
Protocol 1 lacks a strong mechanism for ensuring the
 703 
Protocol 1 lacks a strong mechanism for ensuring the
704 
integrity of the connection.
 704 
integrity of the connection.
705 
.Pp
 705 
.Pp
(-)ssh_config.5 (-1 / +1 lines)
Lines 666-672 Link Here
666 
Multiple algorithms must be comma-separated.
 666 
Multiple algorithms must be comma-separated.
667 
The default is:
 667 
The default is:
668 
.Bd -literal -offset indent
 668 
.Bd -literal -offset indent
669 
hmac-md5,hmac-sha1,umac-64@openssh.com,
 669 
hmac-sha1,hmac-md5,umac-64@openssh.com,
670 
hmac-ripemd160,hmac-sha1-96,hmac-md5-96
 670 
hmac-ripemd160,hmac-sha1-96,hmac-md5-96
671 
.Ed
 671 
.Ed
672 
.It Cm NoHostAuthenticationForLocalhost
 672 
.It Cm NoHostAuthenticationForLocalhost
(-)sshd.8 (-1 / +1 lines)
Lines 304-310 Link Here
304 
to use from those offered by the server.
 304 
to use from those offered by the server.
305 
Additionally, session integrity is provided
 305 
Additionally, session integrity is provided
306 
through a cryptographic message authentication code
 306 
through a cryptographic message authentication code
307 
(hmac-md5, hmac-sha1, umac-64 or hmac-ripemd160).
 307 
(hmac-sha1, hmac-md5, umac-64 or hmac-ripemd160).
308 
.Pp
 308 
.Pp
309 
Finally, the server and the client enter an authentication dialog.
 309 
Finally, the server and the client enter an authentication dialog.
310 
The client tries to authenticate itself using
 310 
The client tries to authenticate itself using
(-)sshd_config.5 (-1 / +1 lines)
Lines 546-552 Link Here
546 
Multiple algorithms must be comma-separated.
 546 
Multiple algorithms must be comma-separated.
547 
The default is:
 547 
The default is:
548 
.Bd -literal -offset indent
 548 
.Bd -literal -offset indent
549 
hmac-md5,hmac-sha1,umac-64@openssh.com,
 549 
hmac-sha1,hmac-md5,umac-64@openssh.com,
550 
hmac-ripemd160,hmac-sha1-96,hmac-md5-96
 550 
hmac-ripemd160,hmac-sha1-96,hmac-md5-96
551 
.Ed
 551 
.Ed
552 
.It Cm Match
 552 
.It Cm Match

Return to bug 1580