PuTTY bug ssh2-rsa-kex-pref

Home | Licence | FAQ | Docs | Download | Keys | Links
Mirrors | Updates | Feedback | Changes | Wishlist | Team

summary: RSA KEX ends up at the bottom of pref list on upgrade
class: bug: This is clearly an actual problem we want fixed.
difficulty: tricky: Needs many tuits.
priority: high: This should be fixed in the next release.
absent-in: 0.60
present-in: 2007-05-07
fixed-in: r9181 (0.61) (0.62)

The addition of ssh2-rsa-kex has caused a problem with the KEX algorithm preference list, in that while the new default list puts RSA ahead of WARN, loading a saved session from an older PuTTY version that didn't support RSA KEX will leave RSA after warn. This is an inherent consequence of the way gprefs() works.

Fixing the problem isn't trivial. In this case, it would probably be reasonable to promote RSA to just above WARN if it's absent, but there probably isn't a suitable general rule. Another approach would be to scrap the preference lists and have a better cipher selection mechanism.

sgt, 2011-06-25: introduced a mechanism for specifying the default position of new items in a preference list as just before or after some existing item, which is good enough to solve this one.

Audit trail for this bug.


If you want to comment on this web site, see the Feedback page.
(last revision of this bug record was at 2011-06-25 18:44:30 +0100)