James A. Donald wrote:
> --
> From: Ben Laurie <[EMAIL PROTECTED]>
>
>>if the key changes in OpenSSH you can't connect until
>>you take positive action by deleting the old key from
>>the known_hosts file. This is totally different to
>>accepting a new key.
>>
>>I will agree
On Fri, Dec 16, 2005 at 05:41:48PM +, Ben Laurie wrote:
> No, OpenSSL is self-contained. There is, IIRC, an engine that uses GMP
> if you want, but its entirely optional; OpenSSL has its own bignum
> implementation that's just as good.
Last I checked, public key operations in OpenSSL were sig
David Mercer wrote:
> And my appologies to Ben Laurie and friends, but why after all these
> years is the UI interaction in ssh almost exactly the same when
> accepting a key for the first time as overriding using a different one
> when it changed on the other end, whether from mitm or just a
> ke
