search for: 3tdea

...sue was reported in RH bugzilla [1] about the size of the used DH group when combined with the 3des-cbc cipher. OpenSSH uses the actual key length for the size estimation. This is probably fine as far as the cipher has the same number of bits of security as the key length. But this is not true for 3TDEA where the key size is 168 resp 192 but it's security is only 112. Given that the key size in openssh is set to 192, DH group size is estimated to 7680. But according to NIST SP 800-57, the size of DH key should be 2048 so openssh doesn't follow that and it might cause problems with key ex...