order of symmetric key algorithms in SSH2

Do you have a question? Post it now! No Registration Necessary.  Now with pictures!

Threaded View
From an SSH2 server I connected to:


Why isn't aes256-cbc before aes128-cbc?  The larger key size
presumably should offer better security than the smaller key size,
although I suppose the additional rounds would make the larger key
size slightly slower.

Of course, if they're being ordered for speed, I would imagine arcfour
would be among the fastest.

Re: order of symmetric key algorithms in SSH2

Quoted text here. Click to load it

The SSH-2 protocol specification states that the selected algorithm
is the first one on the _client's_ list which is also in the server

Hence, the order in which the client lists its algorithms is
important, but the order in which the server does so makes no
difference to anything. So server maintainers have no need to worry
about arranging their algorithms into any particular order.
Simon Tatham         "What a caterpillar calls the end of the

Site Timeline