From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail-yh0-f51.google.com (mail-yh0-f51.google.com [209.85.213.51]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by huchra.bufferbloat.net (Postfix) with ESMTPS id 6EEB421F5A3 for ; Sat, 25 Oct 2014 08:37:34 -0700 (PDT) Received: by mail-yh0-f51.google.com with SMTP id t59so2583571yho.10 for ; Sat, 25 Oct 2014 08:37:33 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=NlVi3SoNQ0PJob0N4q+XKxnvzOSf6b4YcRLAyJshjMw=; b=HtcalK0FrUZRPP36DTPTuQUNAa0sNbGrPxGzimFyU1YJbvP8SLR5tP0UWUFh+MpPIQ iuO0keSmiE3d6AEzjd6UvqiF76aKnn5HboYkaUm7Gz8SIDCsA3yZRGXZFgwmHg+ciTVs l7aJfJS8EzERdJQx3FMG5EfZAo8/DfbdCn5oETEDHDQ/z1VBb9V5pjjXCTcnRlv+AnS8 sxsir+ckuZUxv/o9hBQGDNcQnar8ajXuHjejDhJGr1yqkqSsOhW7b0picis84nLpSfaf UuYjydNNDzlXt4omYClA/CFWWTp1WPMq0UFWb3PmPUmvI3+0RsFRs+OYIMBBcY2U5HHT 6gUw== X-Gm-Message-State: ALoCoQlYQXcZT3JmhoUTCZZkMGZX8MvrBg45pgBK7XDxDerBAQtIm/xcyqYbbWqxs2+n7wNPtCPm MIME-Version: 1.0 X-Received: by 10.170.205.129 with SMTP id w123mr14420618yke.0.1414251453701; Sat, 25 Oct 2014 08:37:33 -0700 (PDT) Received: by 10.170.99.84 with HTTP; Sat, 25 Oct 2014 08:37:33 -0700 (PDT) X-Originating-IP: [85.221.151.252] Received: by 10.170.99.84 with HTTP; Sat, 25 Oct 2014 08:37:33 -0700 (PDT) In-Reply-To: References: <4186.1414173172@sandelman.ca> <17166.1414176875@sandelman.ca> Date: Sat, 25 Oct 2014 17:37:33 +0200 Message-ID: From: Maciej Soltysiak To: Dave Taht Content-Type: multipart/alternative; boundary=001a11393808857d28050641135c Cc: cerowrt-devel@lists.bufferbloat.net Subject: Re: [Cerowrt-devel] Available MACs in dropbear X-BeenThere: cerowrt-devel@lists.bufferbloat.net X-Mailman-Version: 2.1.13 Precedence: list List-Id: Development issues regarding the cerowrt test router project List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 25 Oct 2014 15:38:03 -0000 --001a11393808857d28050641135c Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable Funny thing. Latest dropbear still has these 2 commented out for some reason. Maybe it's worth checking upstream. Maciej On 25 Oct 2014 15:36, "Dave Taht" wrote: > I'd argue more in favor of updating to the latest dropbear, pulled anyway= . > > On Sat, Oct 25, 2014 at 5:31 AM, Maciej Soltysiak > wrote: > > On Fri, Oct 24, 2014 at 8:54 PM, Michael Richardson > wrote: > >> > >> Maciej Soltysiak wrote: > >> >> The reason why it hurts me is that I have servers configured > >> >> according to bettercrypto.org and I can't connect from cero > (rare > >> >> occasions, but > >> >> > >> >> 1) MD5 !=3D HMAC-MD5. > >> > That I didn't know, thanks Michael. For some reason > bettercrypto.org > >> > >> Yeah, people get very excited over pattern matching of crypto > algorithms. > > Well, that may be the case. Here though, I'm more interested in > introducing > > HMAC-SHA2s, than eradicating HMAC-MD5 as my setups wouldn't allow it > anyway. > > > > Anyway, Dave, here's the pull request: > > https://github.com/dtaht/cerowrt-3.10/pull/1 > > And here's the commit I'm suggesting: > > > https://github.com/pysiak/cerowrt-3.10/commit/3cac2227700561272e3476f5683= 18c42975bc813 > > > > The request is to patch a patch unfortunately :-) > > > > Can you have a look, please? > > Maciej Soltysiak > > _______________________________________________ > > Cerowrt-devel mailing list > > Cerowrt-devel@lists.bufferbloat.net > > https://lists.bufferbloat.net/listinfo/cerowrt-devel > > > > -- > Dave T=C3=A4ht > > thttp://www.bufferbloat.net/projects/bloat/wiki/Upcoming_Talks > --001a11393808857d28050641135c Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable

Funny thing. Latest dropbear still has these 2 commented out= for some reason. Maybe it's worth checking upstream.

Maciej

On 25 Oct 2014 15:36, "Dave Taht" <= dave.taht@gmail.com> wrote:
I'd argue more in= favor of updating to the latest dropbear, pulled anyway.

On Sat, Oct 25, 2014 at 5:31 AM, Maciej Soltysiak <maciej@soltysiak.com> wrote:
> On Fri, Oct 24, 2014 at 8:54 PM, Michael Richardson <mcr@sandelman.ca> wrote:
>>
>> Maciej Soltysiak <macie= j@soltysiak.com> wrote:
>>=C2=A0 =C2=A0 =C2=A0>> The reason why it hurts me is that I h= ave servers configured
>>=C2=A0 =C2=A0 =C2=A0>> according to bettercrypto.org and I can't connect f= rom cero (rare
>>=C2=A0 =C2=A0 =C2=A0>> occasions, but
>>=C2=A0 =C2=A0 =C2=A0>>
>>=C2=A0 =C2=A0 =C2=A0>> 1) MD5 !=3D HMAC-MD5.
>>=C2=A0 =C2=A0 =C2=A0> That I didn't know, thanks Michael. Fo= r some reason betterc= rypto.org
>>
>> Yeah, people get very excited over pattern matching of crypto algo= rithms.
> Well, that may be the case. Here though, I'm more interested in in= troducing
> HMAC-SHA2s, than eradicating HMAC-MD5 as my setups wouldn't allow = it anyway.
>
> Anyway, Dave, here's the pull request:
> https://github.com/dtaht/cerowrt-3.10/pull/1
> And here's the commit I'm suggesting:
> https://github.com/pysiak/ce= rowrt-3.10/commit/3cac2227700561272e3476f568318c42975bc813
>
> The request is to patch a patch unfortunately :-)
>
> Can you have a look, please?
> Maciej Soltysiak
> _______________________________________________
> Cerowrt-devel mailing list
> Cerowrt-devel@l= ists.bufferbloat.net
> https://lists.bufferbloat.net/listinfo/cerowrt-devel



--
Dave T=C3=A4ht

thttp://www.bufferbloat.net/projects/bloat/wiki/Upcoming_T= alks
--001a11393808857d28050641135c--