PuTTY bug ssh2-rsa-kex-pref

This is a mirror. The primary PuTTY web site can be found here.

Home | Licence | FAQ | Docs | Download | Keys | Links
Mirrors | Updates | Feedback | Changes | Wishlist | Team

summary: RSA KEX ends up at the bottom of pref list on upgrade
class: bug: This is clearly an actual problem we want fixed.
difficulty: tricky: Needs many tuits.
priority: high: This should be fixed in the next release.
absent-in: 0.60
present-in: 2007-05-07

The addition of ssh2-rsa-kex has caused a problem with the KEX algorithm preference list, in that while the new default list puts RSA ahead of WARN, loading a saved session from an older PuTTY version that didn't support RSA KEX will leave RSA after warn. This is an inherent consequence of the way gprefs() works.

Fixing the problem isn't trivial. In this case, it would probably be reasonable to promote RSA to just above WARN if it's absent, but there probably isn't a suitable general rule. Another approach would be to scrap the preference lists and have a better cipher selection mechanism.

Audit trail for this bug.

If you want to comment on this web site, see the Feedback page.
(last revision of this bug record was at 2007-05-07 11:23:21 +0100)