Comment Re:No X.509 certificateds? (Score 1) 127
the cert is not the same as the transport. It's not certs that make TLS vulnerable, it's TLS.
SSH only has to make sure that it gets the public part of the key on the server. Then it's the same as ssh as normal