Three problems in OpenSSH's ssh-keysign
This is being posted to bugtraq in the interest of full disclosure. Originally sent to [email protected]. There are 3 problems we observed by inspection of OpenSSH's ssh-keysign: 1 Charles Hannum Since no blinding is done on the RSA calculations, ssh-keysign is effectively a fairly efficient...