On 2016-04-22 16:39, Johnny Billquist wrote:
On 2016-04-22 16:25, Sampsa Laine wrote:
Actually we had this idea with Steve Davidson where we’d build a
crypto-coprocessor in Python on the host OS and somehow hook it up
(via say a serial port) to a PDP-11 and have the host OS do all the
RSA, AES, SHA, MD5 operations that way and the SSH server on the
PDP-11 would just be a shim to implement the SSH protocol.
It’s quite easily doable in Python since it comes with all the crypto
libraries pre-built, Johnny, you interested in something like this for
adding SSH to your RSX TCP/IP stack?
No. That would be pretty much meaningless, as there are options and
stuff done in SSH which affects what should happen on the system as
well. You cannot move ssh outside, and still have the functionality in
place.
Actually, if you talk about just offloading the crypto-work, I guess
that could be done. But then you'd need some kind of device where you
could pass certificates and encrypted streams, and get the results after
those steps, as well as the reverse.
But that would mean implementing a sortof ssh that would depend on this
special ssh-cyrpto-device to work, so not usable on a real pdp-11 (not
that ssh will ever be possible on a real pdp-11 anyway).
I seriously doubt I'd ever do this, but if someone else wants to, they
could grab my telnet server (sources are included), and just add the
work in that code to deal with ssh.
How do you think something like sftp works?
This is somewhere where it gets even more interesting, as you here then
need to fire off a process instead of giving a shell (or equivalent).
And then deal with all the details of it.
Ugh!
Johnny
_______________________________________________
Simh mailing list
[email protected]
http://mailman.trailing-edge.com/mailman/listinfo/simh
