search for: bn_

------- Forwarded Message Subject: Re: Dubious use of BN_num_bits in sshconnect1.c From: Niels Provos <provos at citi.umich.edu> In-Reply-To: alex at foogod.com, Sun, 18 Feb 2001 19:38:56 PST To: alex at foogod.com Cc: openssh-unix-dev at mindrot.org Date: Mon, 19 Feb 2001 10:07:24 -0500 Sender: provos at citi.umich.edu Hi Alex, there is no probl...

I remember a discussion to the effect that using DSA keys in sshd increases the requirement for random bits available on the system... and that this requirement (was it a 128 bit random number per connection?) presents security problems on systems that don't have a decent source of entropy? Am I misinterpreting those discussions? We are having a problem deploying sshd (no prngd) where sshd

...Warning: This may be due to an old implementation of ssh. respond_to_rsa_challenge: public_key 1151 < host_key 1024 + SSH_KEY_BITS_RESERVED 128 ..and a resulting refusal to continue. I've done a bit of digging in the source, and have found the source of the problem to be the use of BN_num_bits to determine the length of the keys received in sshconnect1.c. The problem is that BN_num_bits does not return the number of significant bits of a given bignum, but rather the position of the most significant 1 bit, which is not necessarily the same thing. It is perfectly possible (and...

...5R1LGX[NRV;(HHAZ=TUJ_Y,\X6(E@RT.=$?,"M%+Y5@19PV1E^;K1S*0XI4 ZAWA5Z3^_>3W5^JC?,H8W6B*HO..N58?4!5#>4%H/";S3^>JY"HUIFHB:"!<% Z%X[=HBBU4M\DTP64KIT0O)Q_ST;1A2%7YS9L`=B:?A:+4SLI^+T,G&]RF/<'' ZS]T_*^&B(P//QU!)->KL8(UE8ZC(8;I''SXD66U*J\&32?5@BN_$X1''ILH+?/ ZGYEPM;#];=WU*Z<2VJF@,7.ORF1VDU3#*/<R>X:)OUM/=`OKEVDR,3V-\^?Q Z]T*BLO=IO3>C9*AGXC@QY_#`)[/]1)[;M&]S(B&&J?3CUQ-?84Y=?T93%ED: ZAN>0Z3>;^E,+]6%/1__><'')T3JN''.O#17P]F>RG]L9__X>([\''C("J-8JZ3O Z\#`OE\"--X`&lt...