Hi, are there any plans to obsolete the MD5 in OpenSSH ? Would it be possible to remove hmac-md5-etm at openssh.com,hmac-md5-96-etm at openssh.com,hmac-md5,hmac-md5-96 from the default list of MACs ? http://www.di.ens.fr/~fouque/pub/crypto07b.pdf According to RFC 4253, hmac-md5 and hmac-md5-96 are only optional. Fedor
On Mon, 4 May 2015, Fedor Brunner wrote:> Hi, > are there any plans to obsolete the MD5 in OpenSSH ? > > Would it be possible to remove > hmac-md5-etm at openssh.com,hmac-md5-96-etm at openssh.com,hmac-md5,hmac-md5-96 from > the default list of MACs ?You can do that if you want. There's no pressing reason to, since HMAC-MD5 is still considered safe, cf. http://cseweb.ucsd.edu/~mihir/papers/hmac-new.html -d