Differences
This shows you the differences between the selected revisions of the page.
| 2015-04-10 | 2015-04-10 | ||
| limit acronym recognition (martin) | limit acronym recognition (martin) | ||
| Line 67: | Line 67: | ||
| ===== [[rsa_padding]] Requires padding on SSH-2 RSA signatures ===== | ===== [[rsa_padding]] Requires padding on SSH-2 RSA signatures ===== | ||
| - | Versions below 3.3 of [[&openssh|OpenSSH]] and versions below 1.3.4d/1.3.5rc4 of ProFTPD/mod_sftp require SSH-2 RSA signatures to be padded with zero bytes to the same length as the %%RSA%% key modulus. The SSH-2 draft specification says that an unpadded signature MUST be accepted, so this is a bug. A typical symptom of this problem is that WinSCP mysteriously fails %%RSA%% authentication once in every few hundred attempts, and falls back to passwords. In session log file you will typically see this record: | + | Versions below 3.3 of [[&openssh|OpenSSH]] and versions below 1.3.4d/1.3.5rc4 of ProFTPD/mod_sftp require SSH-2 RSA signatures to be padded with zero bytes to the same length as the %%RSA%% key modulus. The %%SSH-2%% draft specification says that an unpadded signature MUST be accepted, so this is a bug. A typical symptom of this problem is that WinSCP mysteriously fails %%RSA%% authentication once in every few hundred attempts, and falls back to passwords. In session log file you will typically see this record: |
| <code> | <code> | ||