Differences
This shows you the differences between the selected revisions of the page.
| 2021-12-06 | 2022-05-25 | ||
| updating for 5.20 captions + removing obsoleted references to SSH versions (martin) | formatting (martin) | ||
| Line 41: | Line 41: | ||
| ===== [[sshbug_rsapad2]] Requires padding on SSH RSA signatures ===== | ===== [[sshbug_rsapad2]] Requires padding on SSH RSA signatures ===== | ||
| - | Versions below 3.3 of [[&openssh|OpenSSH]] and versions below 1.3.4d/1.3.5rc4 of ProFTPD/mod_sftp require SSH RSA signatures to be padded with zero bytes to the same length as the %%RSA%% key modulus. The %%SSH%% specification says that an unpadded signature MUST be accepted, so this is a bug. A typical symptom of this problem is that WinSCP mysteriously fails %%RSA%% authentication once in every few hundred attempts, and falls back to passwords. In session log file you will typically see this record: | + | Versions below 3.3 of [[&openssh|OpenSSH]] and versions below 1.3.4d/1.3.5rc4 of ProFTPD ''mod_sftp'' require SSH RSA signatures to be padded with zero bytes to the same length as the %%RSA%% key modulus. The %%SSH%% specification says that an unpadded signature MUST be accepted, so this is a bug. A typical symptom of this problem is that WinSCP mysteriously fails %%RSA%% authentication once in every few hundred attempts, and falls back to passwords. In session log file you will typically see this record: |
| <code> | <code> | ||