PuTTY wish gss-key-exchange

This is a mirror. Follow this link to find the primary PuTTY web site.

Home | FAQ | Feedback | Licence | Updates | Mirrors | Keys | Links | Team
Download: Stable · Pre-release · Snapshot | Docs | Privacy | Changes | Wishlist

summary: GSSAPI key exchange
class: wish: This is a request for an enhancement.
difficulty: tricky: Needs many tuits.
fixed-in: 223ea4d1e63cb1f592634539626bd9f2f2aad342 (0.71)

Implement GSSAPI key exchange as an alternative to GSSAPI user authentication.

The documentation describes the advantages of using GSSAPI key exchange.

This initial implementation supports only Kerberos V5, and only the cryptographic algorithms specified in RFC 4462; it does not implement any of the methods specified in draft-ietf-curdle-gss-keyex-sha2 (not yet published as an RFC at time of writing).

All of the RFC 4462 methods use the SHA-1 hash, which is looking wobbly these days. As well as group exchange, RFC 4462 specifies (and we support) fixed groups, including Diffie-Hellman "group 1", which we're not keen on (see deprecate-dh-group1). There's no way currently to disable some methods selectively, but the whole feature can be disabled with the setting "Attempt GSSAPI key exchange".
[Update: see gss-key-exchange-more-algs for how this is addressed in newer versions.]


If you want to comment on this web site, see the Feedback page.
Audit trail for this wish.
(last revision of this bug record was at 2022-10-28 17:29:14 +0100)