From owner-freebsd-security  Fri Mar 26 11: 5:44 1999
Delivered-To: freebsd-security@freebsd.org
Received: from haldjas.folklore.ee (Haldjas.folklore.ee [193.40.6.121])
	by hub.freebsd.org (Postfix) with ESMTP id 6A0F514C1B
	for <freebsd-security@FreeBSD.ORG>; Fri, 26 Mar 1999 11:05:41 -0800 (PST)
	(envelope-from narvi@haldjas.folklore.ee)
Received: from haldjas.folklore.ee (haldjas.folklore.ee [172.17.2.1] (may be forged))
          by haldjas.folklore.ee (8.8.8/8.8.4) with SMTP
	  id VAA20889; Fri, 26 Mar 1999 21:05:07 +0200 (EET)
Date: Fri, 26 Mar 1999 21:05:07 +0200 (EET)
From: Narvi <narvi@haldjas.folklore.ee>
To: Matthew Dillon <dillon@apollo.backplane.com>
Cc: Linus Nordberg <linus.nordberg@canit.se>,
	Mike Thompson <miket@dnai.com>, freebsd-security@FreeBSD.ORG
Subject: Re: Kerberos vs SSH
In-Reply-To: <199903261620.IAA05283@apollo.backplane.com>
Message-ID: <Pine.BSF.3.96.990326205621.5291D-100000@haldjas.folklore.ee>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org


On Fri, 26 Mar 1999, Matthew Dillon wrote:

> 
>     That's a pretty old message.  If you look at the followups to it
>     you will find the counterargument from the ssh 2 people, and a
>     third example from even older bignum source code that is very similar
>     to the ssh 2 and gmp code.
> 
>     There are only so many ways a bignum library can be written.  Still,
>     I think the GMP author was right in regards to the SSH 2 people using
>     his code verbatim.  On the otherhand, bignum is something that a
>     good programmer could write from scratch in a week.   The last two
>     postings in the thread note that the bignum code can be derived from
>     Knuth's Seminumerical Alg. book fairly easily... in a few hours.  I'd
>     agree with that comment too.
> 
> 					-Matt
> 					Matthew Dillon 
> 					<dillon@backplane.com>
> 

Anybody who has taken a computer algebra course in part of their
curriculum should be able to implement the easy part of arbitary length
library (arbitary length integers & operations over finite fields) with
relative ease.

There should be *many* such people.

	Sander

	There is no love, no good, no happiness and no future -
	all these are just illusions.




To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message