[prev in list] [next in list] [prev in thread] [next in thread] 

List:       netbsd-tech-net
Subject:    Re: scp troughput
From:       Anders Magnusson <ragge () ludd ! ltu ! se>
Date:       2019-08-21 16:41:08
Message-ID: a1889147-a126-89ca-0233-49daa1d0cabe () ludd ! ltu ! se
[Download RAW message or body]

Den 2019-08-21 kl. 18:30, skrev Greg Troxel:
> Michael van Elst <mlelstv@serpens.de> writes:
>
>> On Wed, Aug 21, 2019 at 08:12:11AM -0400, Greg Troxel wrote:
>>
>>> There is also talk of adding a NONE cipher back, and I hope we didn't do
>>> that (but it seems highly highly unlikely we would have).
>> We added support for the NONE cipher. That is still secure in that it
>> guarantees proper authentication and integrity, just confidentiality
>> gets lost.
> "secure" is a complicated word :-) I see your point about authentication
> and integrity, but it breaks the property that if you use ssh then you
> are sure there is no way to end up without encryption.  (I get it that
> with TOFU you aren't sure you are sending data to the right place, but I
> see that as somewhat separate.)
That is up to the user IMHO.  And if I use a slow machine then I 
probably want to avoid using encryption for bulk transfers, otherwise I 
have to go back to rcp instead.

-- R
[prev in list] [next in list] [prev in thread] [next in thread]