This is the mail archive of the cygwin-talk mailing list for the cygwin project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

RE: very poor cygwin scp performance in some situations

From: "Dave Korn" <dave dot korn at artimi dot com>
To: "Thread TITTTL'd!" <cygwin-talk at cygwin dot com>
Date: Tue, 28 Mar 2006 16:41:43 +0100
Subject: RE: very poor cygwin scp performance in some situations
Reply-to: The Cygwin-Talk Malingering List <cygwin-talk at cygwin dot com>

On 28 March 2006 16:32, Igor Peshansky wrote:

> 
> I did read it.  The HSN patch is *much* more drastic than what I was
> proposing.  Maybe I'm dense, but I don't see any impact on security from
> changing the buffer size (as long as buffer overflows are properly
> addressed).  After all, that buffer is used to store *encrypted* data,
> right?

  Trying to make inferences about these sorts of matters is incredibly
difficult.

  For instance, upping the buffer size to 64k might amplify the timing
differences between successfully and unsuccessfully decrypted blocks enough to
form a side-channel attack.

  Or it might not, but the point is, that the kind of thing that looks like a
direct and simple replacement of X for Y can have all sorts of unexpected
knock-on consequences in crypto systems.

  The SSH guys are probably right to err heavily on the side of caution.

    cheers,
      DaveK
-- 
Can't think of a witty .sigline today....

Follow-Ups:
- RE: very poor cygwin scp performance in some situations
  - From: Igor Peshansky

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]