On Sat, 5 May 2012 20:27, gn...@oneiroi.net said: > Hm, shouldn't authentication happen before exchanging key for > symmetric part of encryption during the SSH session?
No, DH is commonly (and by SSH) used as a key agreement protocol. This means that N and only N communication peers agree on a shared session key. It can't avoid a MitM attack and thus an additional authentication step is required. Shalom-Salam, Werner -- Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz. _______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users