Slashdot Mirror

← Back to Stories (view on slashdot.org)

OpenSSH No Longer Has To Depend On OpenSSL

Posted by Soulskill on Wednesday April 30, 2014 @07:27AM from the like-independence-day,-but-for-communications-protocols dept.

ConstantineM writes: "What has been planned for a long time now, prior to the infamous heartbleed fiasco of OpenSSL (which does not affect SSH at all), is now officially a reality — with the help of some recently adopted crypto from DJ Bernstein, OpenSSH now finally has a compile-time option to no longer depend on OpenSSL. `make OPENSSL=no` has now been introduced for a reduced configuration OpenSSH to be built without OpenSSL, which would leave you with no legacy SSH-1 baggage at all, and on the SSH-2 front with only AES-CTR and chacha20+poly1305 ciphers, ECDH/curve25519 key exchange and Ed25519 public keys."

3 of 144 comments (clear)

Min score:

Reason:

Sort:

Nooooooooo by sholdowa · 2014-04-30 07:29 · Score: 5, Funny

Sorry, I'll take OpenSSL over any DJBness any time!
Re:symbolism over substance in the realm of secury by theshowmecanuck · 2014-04-30 15:51 · Score: 3, Funny

'one party, two faces'
FTFY: 'one party, two feces'

--
-- I ignore anonymous replies to my comments and postings.
Re:He's right when he's driving in the UK by neurovish · 2014-05-01 02:39 · Score: 4, Funny

Driving around "country roads" in Scotland, I was left with the impression that they don't really have "sides". You just go along down the middle until you come across an oncoming car, then rock/paper/scissors to decide who is going to back-up to a spot wide enough for two cars to pass or just pull into the sheep field. These "country roads" also seemed to be the most direct route from one place to another.