PuTTY bug ssh2-rsa-kex-pref

This is a mirror. Follow this link to find the primary PuTTY web site.

Home | FAQ | Feedback | Licence | Updates | Mirrors | Keys | Links | Team
Download: Stable · Pre-release · Snapshot | Docs | Privacy | Changes | Wishlist

summary: RSA KEX ends up at the bottom of pref list on upgrade
class: bug: This is clearly an actual problem we want fixed.
difficulty: tricky: Needs many tuits.
priority: high: This should be fixed in the next release.
absent-in: 0.60
present-in: 2007-05-07
fixed-in: r9181 d764872e9eda35196551b506aa04c03bc8118074 (0.61)

The addition of ssh2-rsa-kex has caused a problem with the KEX algorithm preference list, in that while the new default list puts RSA ahead of WARN, loading a saved session from an older PuTTY version that didn't support RSA KEX will leave RSA after warn. This is an inherent consequence of the way gprefs() works.

Fixing the problem isn't trivial. In this case, it would probably be reasonable to promote RSA to just above WARN if it's absent, but there probably isn't a suitable general rule. Another approach would be to scrap the preference lists and have a better cipher selection mechanism.

sgt, 2011-06-25: introduced a mechanism for specifying the default position of new items in a preference list as just before or after some existing item, which is good enough to solve this one.


If you want to comment on this web site, see the Feedback page.
Audit trail for this bug.
(last revision of this bug record was at 2017-04-28 16:52:45 +0100)