moparisthebest/curl
1
0
Fork 0
mirror of https://github.com/moparisthebest/curl synced 2024-11-16 06:25:03 -05:00
Code Issues Releases Wiki Activity

TODO: Support better than MD5 hostkey hash (for ssh)

Browse Source
This commit is contained in:
Daniel Stenberg 2016-10-08 11:51:21 +02:00
parent 4f43236a40
commit e11da9f4b7
1 changed files with 11 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
docs/TODO
View File

@ -133,6 +133,7 @@
17. SSH protocols 17. SSH protocols
17.1 Multiplexing 17.1 Multiplexing
17.2 SFTP performance 17.2 SFTP performance
17.3 Support better than MD5 hostkey hash
18. Command line tool 18. Command line tool
18.1 sync 18.1 sync
@ -864,6 +865,16 @@ that doesn't exist on the server, just like --ftp-create-dirs.
libcurl's SFTP transfer performance is sub par and can be improved, mostly by libcurl's SFTP transfer performance is sub par and can be improved, mostly by
the approach mentioned in "1.6 Modified buffer size approach". the approach mentioned in "1.6 Modified buffer size approach".
17.3 Support better than MD5 hostkey hash
libcurl offers the CURLOPT_SSH_HOST_PUBLIC_KEY_MD5 option for verifying the
server's key. MD5 is generally being deprecated so we should implement
support for stronger hashing algorithms. libssh2 itself is what provides this
underlying functionality and it supports at least SHA-1 as an alternative.
SHA-1 is also being deprecated these days so we should consider workign with
libssh2 to instead offer support for SHA-256 or similar.
18. Command line tool 18. Command line tool
18.1 sync 18.1 sync