Skip site navigation (1)Skip section navigation (2)
Date:      Fri, 5 Jan 2001 14:30:00 -0600
From:      Dan Nelson <dnelson@emsphone.com>
To:        Artem Koutchine <matrix@ipform.ru>
Cc:        "David G. Andersen" <dga@pobox.com>, security@FreeBSD.ORG, questions@FreeBSD.ORG
Subject:   Re: Antisniffer measures (digest of posts)
Message-ID:  <20010105142959.A27186@dan.emsphone.com>
In-Reply-To: <002f01c07753$af808400$0c00a8c0@ipform.ru>; from "Artem Koutchine" on Fri Jan  5 23:11:25 GMT 2001
References:  <200101052002.NAA29203@faith.cs.utah.edu> <002f01c07753$af808400$0c00a8c0@ipform.ru>

next in thread | previous in thread | raw e-mail | index | archive | help
In the last episode (Jan 05), Artem Koutchine said:
> 
> Nope, dsniff breaks SSL and SSH1.
> 

dsniff does *not* "break" SSL or SSH1.  If you are silly enough to
answer "yes" to the warning ssh spits out, you get what you deserve. 

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@       WARNING: HOST IDENTIFICATION HAS CHANGED!         @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
Someone could be eavesdropping on you right now (man-in-the-middle attack)!
It is also possible that the host key has just been changed.
Please contact your system administrator.
Agent forwarding is disabled to avoid attacks by corrupted servers.
X11 forwarding is disabled to avoid attacks by corrupted servers.
Are you sure you want to continue connecting (yes/no)?

-- 
	Dan Nelson
	dnelson@emsphone.com


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010105142959.A27186>