I just stumbled upon this advisory about CBC mode ciphers have a vulnerability.
http://www.openssh.org/txt/cbc.adv
I have looked into this and discovered that some old versions of Putty and WinSCP will need to be updated, but this looks like a good idea to reduce the list of ciphers until a fix is found.
No comments:
Post a Comment