From 3ba2d921e279cdfb9c399007f889b5be1a47a465 Mon Sep 17 00:00:00 2001 From: simon Date: Thu, 31 Mar 2005 13:45:41 +0000 Subject: [PATCH] FAQ entry on rekeys: Jacob would like to pre-emptively try to avoid the possibility of people falling back to SSH-1 just because it gets rid of the irritating delays. git-svn-id: svn://svn.tartarus.org/sgt/putty@5584 cda61777-01e9-0310-a592-d414129be87e --- doc/faq.but | 16 ++++++++++++++++ 1 file changed, 16 insertions(+) diff --git a/doc/faq.but b/doc/faq.but index a6a99a24..26d73d52 100644 --- a/doc/faq.but +++ b/doc/faq.but @@ -968,6 +968,22 @@ indicate that PuTTY's doing anything wrong, and we don't need to hear about further occurrences. See \k{errors-connaborted} for our current documentation of this error. +\S{faq-rekey}{Question} My SSH-2 session \I{locking up, SSH-2 +sessions}locks up for a few seconds every so often. + +Recent versions of PuTTY automatically initiate \i{repeat key +exchange} once per hour, to improve session security. If your client +or server machine is slow, you may experience this as a delay of +anything up to thirty seconds or so. + +These \I{delays, in SSH-2 sessions}delays are inconvenient, but they +are there for your protection. If they really cause you a problem, +you can choose to turn off periodic rekeying using the \q{Kex} +configuration panel (see \k{config-ssh-kex}), but be aware that you +will be sacrificing security for this. (Falling back to SSH-1 would +also remove the delays, but would lose a \e{lot} more security +still. We do not recommend it.) + \H{faq-secure} Security questions \S{faq-publicpc}{Question} Is it safe for me to download PuTTY and -- 2.11.0