Secrecy of public keys

Sean Whitton spwhitton at spwhitton.name
Fri Jun 25 21:30:46 CEST 2021


Hello Guus,

On Fri 25 Jun 2021 at 09:13PM +02, Guus Sliepen wrote:

> The public key should of course never have to be kept secret.
> The new protocol in tinc 1.1 is not vulnerable to this issue.
>
> Note that both the old and new protocol are designed such that the
> public keys are never made public by tinc itself: you couldn't connect
> to a tinc daemon and get it to to tell you the public key, unlike say
> SSH.

Thank you for your reply.  Very helpful.  May I ask why the new protocol
refuses to share the public key, if it is truly not a secret?  Just that
it's not necessary?

-- 
Sean Whitton


More information about the tinc mailing list