Lukasz Olejnik on Nostr: Wohoo! Finally! OpenSSH was for decades prone to keystroke timing analysis ...
Wohoo! Finally! OpenSSH was for decades prone to keystroke timing analysis (security/privacy leak). Now it’s being fixed! By introduction of random noise content.
But will noise at fixed 20ms intervals fix it? https://undeadly.org/cgi?action=article;sid=20230829051257 https://marc.info/?l=openbsd-cvs&m=169319335902218&w=2
But will noise at fixed 20ms intervals fix it? https://undeadly.org/cgi?action=article;sid=20230829051257 https://marc.info/?l=openbsd-cvs&m=169319335902218&w=2