> On Feb 11, 2018, at 2:20 AM, Richard Levitte <[email protected]> wrote:
>
> Those same systems will probably not have the newest OpenSSL either,
> and OpenSSH on those machines will certainly not be linked with a
> newer OpenSSL...
It is not those systems, but other systems that need to communicate
with them (various "appliances" that may not see an SSH implementation
update in years) that may need ongoing blowfish support.
So we should tread with some care. Perhaps the software-only Blowfish
is fast enough, but my point is that Blowfish is much less of an obvious
outdated cipher than the others...
--
--
Viktor.
_______________________________________________
openssl-project mailing list
[email protected]
https://mta.openssl.org/mailman/listinfo/openssl-project
