aboutsummaryrefslogtreecommitdiff
path: root/docs
diff options
context:
space:
mode:
authorDaniel Stenberg <daniel@haxx.se>2016-10-08 11:51:21 +0200
committerDaniel Stenberg <daniel@haxx.se>2016-10-08 11:51:21 +0200
commite11da9f4b7e0404790b85bccaac2c2b334c4ca26 (patch)
treefdbf62589242b93a9adfe76c0d1a2b5216b774c3 /docs
parent4f43236a406396ade1c7af64e1d28317c417c551 (diff)
TODO: Support better than MD5 hostkey hash (for ssh)
Diffstat (limited to 'docs')
-rw-r--r--docs/TODO11
1 files changed, 11 insertions, 0 deletions
diff --git a/docs/TODO b/docs/TODO
index 520d0fe25..7d454171d 100644
--- a/docs/TODO
+++ b/docs/TODO
@@ -133,6 +133,7 @@
17. SSH protocols
17.1 Multiplexing
17.2 SFTP performance
+ 17.3 Support better than MD5 hostkey hash
18. Command line tool
18.1 sync
@@ -864,6 +865,16 @@ that doesn't exist on the server, just like --ftp-create-dirs.
libcurl's SFTP transfer performance is sub par and can be improved, mostly by
the approach mentioned in "1.6 Modified buffer size approach".
+17.3 Support better than MD5 hostkey hash
+
+ libcurl offers the CURLOPT_SSH_HOST_PUBLIC_KEY_MD5 option for verifying the
+ server's key. MD5 is generally being deprecated so we should implement
+ support for stronger hashing algorithms. libssh2 itself is what provides this
+ underlying functionality and it supports at least SHA-1 as an alternative.
+ SHA-1 is also being deprecated these days so we should consider workign with
+ libssh2 to instead offer support for SHA-256 or similar.
+
+
18. Command line tool
18.1 sync