From owner-freebsd-security Sun Feb 26 20:48:10 1995 Return-Path: security-owner Received: (from majordom@localhost) by freefall.cdrom.com (8.6.9/8.6.6) id UAA26229 for security-outgoing; Sun, 26 Feb 1995 20:48:10 -0800 Received: from po7.andrew.cmu.edu (PO7.ANDREW.CMU.EDU [128.2.10.107]) by freefall.cdrom.com (8.6.9/8.6.6) with ESMTP id UAA26223; Sun, 26 Feb 1995 20:48:08 -0800 Received: (from postman@localhost) by po7.andrew.cmu.edu (8.6.9/8.6.9) id XAA14562; Sun, 26 Feb 1995 23:47:19 -0500 Received: via switchmail; Sun, 26 Feb 1995 23:47:18 -0500 (EST) Received: from pcs12.andrew.cmu.edu via qmail ID ; Sun, 26 Feb 1995 23:46:15 -0500 (EST) Received: from pcs12.andrew.cmu.edu via qmail ID ; Sun, 26 Feb 1995 23:46:12 -0500 (EST) Received: from mms.4.60.Jan.26.1995.18.43.47.sun4c.411.EzMail.Phred.2.0.CUILIB.3.45.SNAP.NOT.LINKED.pcs12.andrew.cmu.edu.sun4c.411 via MS.5.6.pcs12.andrew.cmu.edu.sun4c_411; Sun, 26 Feb 1995 23:46:11 -0500 (EST) Message-ID: Date: Sun, 26 Feb 1995 23:46:11 -0500 (EST) From: "Alex R.N. Wetmore" To: freebsd-hackers@freefall.cdrom.com Subject: Re: key exchange for rlogin/telnet services? Cc: hackers@freefall.cdrom.com, security@freefall.cdrom.com In-Reply-To: <16925.793850098@freefall.cdrom.com> References: <16925.793850098@freefall.cdrom.com> Sender: security-owner@FreeBSD.org Precedence: bulk Excerpts from internet.computing.freebsd-hackers: 26-Feb-95 Re: key exchange for rlogin.. by "Jordan K. Hubbard"@free > Sorry, but this still just doesn't do it for me. I will be doing > other logins within that session, or often need to `su' to do system > repair work. I need the session entirely encrypted from the first > couple of handshakes. From all indications, this diffie-hellman thing > is the way to go! If skey is setup properly it will require that you use it for all authentication within the machine (su, ftpd, etc). The main problem with it is that you need to have a machine to run the challenge program on or you need to carry around precomputed challenges. alex