From owner-freebsd-questions@FreeBSD.ORG  Fri Mar 18 12:17:09 2005
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id CF79516A4CE
	for <freebsd-questions@freebsd.org>;
	Fri, 18 Mar 2005 12:17:09 +0000 (GMT)
Received: from demon.noconname.org (19.Red-80-26-109.pooles.rima-tde.net
	[80.26.109.19])	by mx1.FreeBSD.org (Postfix) with ESMTP id 3788543D46
	for <freebsd-questions@freebsd.org>;
	Fri, 18 Mar 2005 12:17:07 +0000 (GMT)
	(envelope-from jncastellano@noconname.org)
Received: from [192.168.0.11] (unknown [192.168.0.11])
	(using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by demon.noconname.org (Postfix) with ESMTP id 3928835FD
	for <freebsd-questions@freebsd.org>;
	Fri, 18 Mar 2005 12:14:24 +0100 (CET)
Message-ID: <423AC6A9.5010408@noconname.org>
Date: Fri, 18 Mar 2005 13:16:41 +0100
From: =?ISO-8859-1?Q?Jos=E9_Nicol=E1s_Castellano?=
	<jncastellano@noconname.org>
Organization: No cON Name
User-Agent: Mozilla Thunderbird 0.8 (Windows/20040913)
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: freebsd-questions@freebsd.org
References: <20050318112317.GA35516@lothlorien.nagual.st>
	<423ABD5F.5010007@noconname.org> <bf68260705031804093770699f@mail.gmail.com>
In-Reply-To: <bf68260705031804093770699f@mail.gmail.com>
Content-Type: multipart/mixed;
 boundary="------------070008090705090400050904"
X-Content-Filtered-By: Mailman/MimeDel 2.1.1
Subject: Re: ssh security
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
Reply-To: jncastellano@noconname.org
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 18 Mar 2005 12:17:10 -0000

This is a multi-part message in MIME format.
--------------070008090705090400050904
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 8bit



Stian Øvrevåge wrote:

>Another problem is the Man-in-the-Middle problem, where you are led to
>believe that you are communicating with your home-computer, but your
>session is relayed on through a decrypting/encrypting gateway which is
>under someone else's controll.
>  
>
Of course exists the man-in-the middle by suplanting primarily keys, and 
other possibility is exploiting any vulnerability of server and client.
But if anyone is trying to MITM you, client alerts you that keys don't 
match to primarily ssh handshaking keys and possibly someone is MITM you.
.

-- 
Jose Nicolas Castellano
Presidente - Asociación No cON Name
Tel:     +34 616 727 675
E-Mail  : jncastellano@noconname.org
WWW: www.noconname.org


--------------070008090705090400050904--