fpoirotte
commented
9 years ago See also https://jira.atlassian.com/browse/STASH-5472 for ways to provoke a rekeying using the OpenSSH client (and to debug what's actually going on).
Closed fpoirotte closed 9 years ago
fpoirotte
commented
9 years ago See also https://jira.atlassian.com/browse/STASH-5472 for ways to provoke a rekeying using the OpenSSH client (and to debug what's actually going on).
The current code does not handle re-keying. While this is not really an issue for short-lived sessions where not much data is exchanged between the client and server, this is critical to protect confidentiality and integrity when a large amount of data is transmitted.
This is also a requirement per RFC 4251.