<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html style="direction: ltr;">
<head>
<meta content="text/html; charset=UTF-8" http-equiv="Content-Type">
<style>body p { margin-bottom: 0cm; margin-top: 0pt; } </style>
</head>
<body style="direction: ltr;" bidimailui-detected-decoding-type="UTF-8"
bgcolor="#ffffff" text="#000000">
Thanks for that one, Tzafrir.<br>
<br>
In fact, I did try a Python script on my SSH server, and it just failed
to run through the test (connection reset by peer). It makes sense now.
:)<br>
<br>
And now when you said it, it's quite easy to confirm that all over the
web.<br>
<br>
<a
href="http://security.stackexchange.com/questions/1599/what-is-the-difference-between-ssl-vs-ssh-which-is-more-secure">http://security.stackexchange.com/questions/1599/what-is-the-difference-between-ssl-vs-ssh-which-is-more-secure</a><br>
<br>
So it's all about https. Phew!<br>
<br>
Eli<br>
<br>
<br>
On 11/04/14 15:43, Tzafrir Cohen wrote:
<blockquote cite="mid:20140411124302.GY16130@lemon.cohens.org.il"
type="cite">
<pre wrap="">SSH is safe from this - it does not use this mechanism. Its protocol is
different.Likewise is GPG is safe from this bug as it is built with
GnuTLS.
</pre>
</blockquote>
<p><br>
</p>
<br>
<pre class="moz-signature" cols="72">--
Web: <a class="moz-txt-link-freetext" href="http://www.billauer.co.il">http://www.billauer.co.il</a>
</pre>
</body>
</html>