SSH protects the world’s most sensitive networks. It just got a lot weaker - eviltoast
  • qx128@lemmy.world
    link
    fedilink
    English
    arrow-up
    27
    arrow-down
    5
    ·
    11 months ago

    Yeaaaa, a complete redesign from scratch sounds way more dangerous. “Noah, get the boat” isn’t always the best answer. There’s been a lot of thought and testing put into the magnificent work that is SSH over the past few decades.

    • Eager Eagle@lemmy.worldOP
      link
      fedilink
      English
      arrow-up
      5
      arrow-down
      4
      ·
      edit-2
      11 months ago

      I won’t pretend I know better than the paper authors, what I can say is that some fixes are not incremental.

      There are cases that mature tools and protocols should be left behind, and the danger lies exactly in using a protocol that was designed in the web 1.0 era.