Hello. I have three computers. Each computer gets internet from its own wireless device, and they communicate with each other over a 1000mb ethernet switch. None of the computers therefore do ip forwarding. I use the lan for X11 forwarding, file sharing, and ssh.
I would like to use SSL for authentication, but not for data encryption. This would disallow an alien computer which plugs into the switch to have free access to open services, and would help the cpu load on large file transfers. I noticed this problem when transferring a large file from my ARM system with scp, when the speed topped out at 7mB/s with 100% cpu load. I found that vsftpd and lftp support SSL authentication with clear text data. The same ARM system uploaded at 25mB/s with this method. I also want this for X11 forwarding and remote shell. The best option I found is to enable SSH protocol 1 on my sshd's, and use the null cipher (-c none). This also allows me to use compression to see if that helps. I am my only user, so I can just remember to not use -c none if I log in from outside the ethernet switch. Are there better options for this issue?
