Re: ssh .vs. rsh

From: Sasha (spamit_at_mail.com)
Date: 01/30/04


Date: Fri, 30 Jan 2004 09:49:20 +0200 (IST)
To: secureshell@securityfocus.com

On Mon, 26 Jan 2004, Atro Tossavainen wrote:
> > If you're not worried about encrypting the X session then just turn off
> > the cypher or select none on your client. The login is still encrypted.
>
> You're mistaken. If you select the "none" cipher, nothing is encrypted.
If you are using a private key for authentication than it is secure to
use none cipher -- your password protects your key and is never
transferred to the server.

BTW: http://www.eskimo.com/~weidai/benchmarks.html
Looks like even 3DES can encrypt ~10 MB/s on a recent computer, so
probably encryption can not be a bottleneck.

Regards,
ASK