commit 4c4f05e09647ec68becba9664b6b84e643fc0578
author Ben Lindstrom <mouring@eviladmin.org> Tue Mar 06 01:09:20 2001 +0000
committer Ben Lindstrom <mouring@eviladmin.org> Tue Mar 06 01:09:20 2001 +0000
tree b80be6bceb955898948ef10527b43fc4cf005d8e
parent c78a187b1776cb45c07a4a138946f8370ed6e71d

   - markus@cvs.openbsd.org 2001/03/05 17:17:21
     [kex.c kex.h sshconnect2.c sshd.c]
     generate a 2*need size (~300 instead of 1024/2048) random private
     exponent during the DH key agreement. according to Niels (the great
     german advisor) this is safe since /etc/primes contains strong
     primes only.

     References:
             P. C. van Oorschot and M. J. Wiener, On Diffie-Hellman key
             agreement with short exponents, In Advances in Cryptology
             - EUROCRYPT'96, LNCS 1070, Springer-Verlag, 1996, pp.332-343.