Subject: Re: FreSSH
To: Michael G. Schabert <mikeride@mac.com>
From: Eric Haszlakiewicz <erh@nimenees.com>
List: current-users
Date: 03/09/2002 12:24:34
On Fri, Mar 08, 2002 at 10:37:20PM -0500, Michael G. Schabert wrote:
> At 2:00 PM -0500 3/8/02, Thor Lancelot Simon wrote:
> >Unfortunately, we all got awfully busy, so the FreSSH team isn't in much
> >of a position to talk.  It doesn't help that none of us really like the
> >baroque V2 protocol very much
> 
> But if you refuse to embrace v2, have you eliminated the MANY known 
> security problems with v1? If not, then without v2 support OpenSSH is 
> still far safer, IMHO.
	We're not refusing to include v2, we just think that there are better
ways to do it.  However, that doesn't mean v1 is the better way.  One of the
things we've tossed around is the idea of replacing the ssh v2 transport
layer with tls/ssl, leaving the v2 authentication and connection layers as is,
which would definitely be an improvement.

eric