Date: Fri, 11 Oct 2002 14:08:41 -0700 From: David Olbersen <dave@slickness.org> To: Nicholas Esborn <nick@netdot.net> Cc: freebsd-security@freebsd.org Subject: Re: Possible to get publickey fingerprint in sshd log messages? Message-ID: <20021011210841.GA20531@slickness.org> In-Reply-To: <20021011192131.GB18130@carbon.berkeley.netdot.net> References: <20021011192131.GB18130@carbon.berkeley.netdot.net>
next in thread | previous in thread | raw e-mail | index | archive | help
--gBBFr7Ir9EOA20Yy Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Thus spake Nicholas Esborn (nick@netdot.net): > The problem is that I can't tell which public key was used to gain entry. > Would a public key fingerprint in this message weaken security in some way > I'm missing? I've been wondering about this ability myself. Showing a PUBLIC key fingerprint shouldn't weaken security at all, should it? It would create the possibility of somebody sending your client encrypted messages, but I wonder how much of a problem that could be. --=20 David Olbersen <dave@slickness.org> Site: http://mp3s.mootech.net PGP Key: http://mootech.net/~dave/gpg-key.txt One hoopy frood who knows where his towel is. --gBBFr7Ir9EOA20Yy Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (FreeBSD) iD4DBQE9pz3ZrtSBoeosATgRAopQAJjcjYK2RgMDAiuE8Q2AM13ybn6hAKDwxLrQ 9IblqYi6V2y4KOOTsuJM6w== =KxxK -----END PGP SIGNATURE----- --gBBFr7Ir9EOA20Yy-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20021011210841.GA20531>