Do you have a question? Post it now! No Registration Necessary. Now with pictures!
- Posted on
May 7, 2004, 1:54 pm
rate this thread
The first message sent during the key exchange session contains a
cookie. It is written in the IETF draft that its purpose is to make it
impossible for either side to fully determine the keys and the session
I really don't understand how this cookie is used in order to prevent
Can anyone tell me how is used this cookie in the sequel of the ssh
Thanks a lot.
Re: Meaning of the cookie part of the Key exchange init message ??????
Exactly how it's (and if) it's used depends on the key exchange algorithm
employed. For example, in the Diffie-Hellman exchange (section 7 of the
SSH-TRANS draft), note that the entire kexinit messages from both sides
are part of the input to the exchange hash, which becomes the session ID
-- and the kexinit messages contain the cookies. The session key is not
affected by the cookies, but it is already not determinable by either side
alone by the nature of the DH algorithm.
- » ssh on command line: force using a group size (prime size) of 1024 (and no...
- — Newest thread in » Secure Shell Forum