Jeremy Nysen wrote:> Are there any plans to include support for SRP or a similar > zero-knowledge password protocol into OpenSSH? >Talked about, at length. Even got code working. Came to the conclusion that until we find a workable system of using it to support centralized authentication, it's not worth the surprisingly small gains. Consider: You end up having to abandon OS level password systems. No PAM, no MD5 passwords...SSH needs to take it all inhouse, because the daemon never receives the plaintext to toss elsewhere. Each account ends up with a password equivalent of a pubkey, which (as we discovered through testing) is fundamentally crackable given the amount of entropy contained within. Now, there is a really interesting model by which you validate unknown host keys because the password mutually authenticates, but it's surprisingly tricky to make it work right...and until it works right, it's better not to do at all. Search for Tom Holroyd's (Dr. Tom) work on this subject. --Dan
Are there any plans to include support for SRP or a similar zero-knowledge password protocol into OpenSSH? -- Jeremy
Jeremy Nysen wrote:> Are there any plans to include support for SRP or a similar > zero-knowledge password protocol into OpenSSH?No, they are tainted by patents. -d
SRP and similar protocols have patent problems. are there any without? On Wed, Sep 17, 2003 at 11:00:18AM +1000, Jeremy Nysen wrote:> Are there any plans to include support for SRP or a similar zero-knowledge > password protocol into OpenSSH? > > -- > Jeremy > > _______________________________________________ > openssh-unix-dev mailing list > openssh-unix-dev at mindrot.org > http://www.mindrot.org/mailman/listinfo/openssh-unix-dev
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Markus Friedl wrote:> we cannot add them if they are tainted. > > we don't care if they are granted in _some_ countries.What am I missing? From the SRP License <http://srp.stanford.edu/license.txt> : SRP is royalty-free worldwide for commercial and non-commercial use. The SRP library has been carefully written not to depend on any encumbered algorithms, and it is distributed under a standard BSD-style Open Source license which is shown below. This license covers implementations based on the SRP library as well as independent implementations based on RFC 2945. Jacques Distler -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2 (Darwin) Comment: PGP Key - http://golem.ph.utexas.edu/~distler/distler.asc iD8DBQE/aUcbnyqPIXpYcjcRAqSEAJ41h43GKudyz8mGm8aJwGMEERvOVwCfTon8 MxA/cFy6AJpum7LjMM7I13w=uz6/ -----END PGP SIGNATURE-----