Differences
This shows you the differences between the selected revisions of the page.
| 2015-02-18 | 2015-04-10 | ||
| login dialog was redesigned a while ago (martin) | rsa_padding (martin) | ||
| Line 65: | Line 65: | ||
| This is an SSH-2-specific bug. | This is an SSH-2-specific bug. | ||
| - | ===== Requires padding on SSH-2 RSA signatures ===== | + | ===== [[rsa_padding]] Requires padding on SSH-2 RSA signatures ===== |
| Versions below 3.3 of [[&openssh|OpenSSH]] and versions below 1.3.4d/1.3.5rc4 of ProFTPD/mod_sftp require SSH-2 RSA signatures to be padded with zero bytes to the same length as the RSA key modulus. The SSH-2 draft specification says that an unpadded signature MUST be accepted, so this is a bug. A typical symptom of this problem is that WinSCP mysteriously fails RSA authentication once in every few hundred attempts, and falls back to passwords. | Versions below 3.3 of [[&openssh|OpenSSH]] and versions below 1.3.4d/1.3.5rc4 of ProFTPD/mod_sftp require SSH-2 RSA signatures to be padded with zero bytes to the same length as the RSA key modulus. The SSH-2 draft specification says that an unpadded signature MUST be accepted, so this is a bug. A typical symptom of this problem is that WinSCP mysteriously fails RSA authentication once in every few hundred attempts, and falls back to passwords. | ||