1995-08-04 - Re: SSLeay - Whats the story…

Header Data

From: Enzo Michelangeli <enzo@ima.com>
To: Eric Young <eay@mincom.oz.au>
Message Hash: f34fe71a269914686122de4d9f53136de62896d34966efc5498e6abd1353aa41
Message ID: <Pine.LNX.3.91.950804190117.11525A-100000@ima.net>
Reply To: <Pine.SOL.3.91.950804184517.4116A-100000@orb>
UTC Datetime: 1995-08-04 11:31:05 UTC
Raw Date: Fri, 4 Aug 95 04:31:05 PDT

Raw message

From: Enzo Michelangeli <enzo@ima.com>
Date: Fri, 4 Aug 95 04:31:05 PDT
To: Eric Young <eay@mincom.oz.au>
Subject: Re: SSLeay - Whats the story...
In-Reply-To: <Pine.SOL.3.91.950804184517.4116A-100000@orb>
Message-ID: <Pine.LNX.3.91.950804190117.11525A-100000@ima.net>
MIME-Version: 1.0
Content-Type: text/plain


On Fri, 4 Aug 1995, Eric Young wrote:

> Do you have a copy of this?

Yes, I've forwarded it to you separately.

> The clear text I don't like, I agree.  But then when used for http, 
> everything begins with a GET anyway.  

Well, ssh and Photuris shows that a better way is possible: do a D-H key 
exchange, then handle anything else (including the authentication of the 
D-H transaction) on the newly established encrypted channel.





Thread