Date: Wed, 9 Aug 2006 08:11:06 -0700 (PDT) From: "R. B. Riddick" <arne_woerner@yahoo.com> To: Brooks Davis <brooks@one-eyed-alien.net> Cc: freebsd-security@freebsd.org, Doug Barton <dougb@freebsd.org> Subject: Re: seeding dev/random in 5.5 Message-ID: <20060809151107.65080.qmail@web30314.mail.mud.yahoo.com> In-Reply-To: <20060809130842.GA7832@lor.one-eyed-alien.net>
next in thread | previous in thread | raw e-mail | index | archive | help
--- Brooks Davis <brooks@one-eyed-alien.net> wrote: > On Wed, Aug 09, 2006 at 12:17:35AM -0700, R. B. Riddick wrote: > These are valid if probably overly paranoid points. :) > Hmm... Oki Doke... But why use ssh, if u do not really care, if u connect to the right host? Maybe the postmen know telecom-men? ;-) > > * But what if the postman (see first point) know already the host-key from > > reading the CD? Then he could log in to ur boxes... > > This isn't true. The host key lets you impersonate the host. It > does not do anything related to log in (unless you use host based > auth). > Ooch! I wrote something wrong. :-) Most likely I meant: If the postman knows the secret part of the host-key, his host could still pretend to be the real host... -Arne __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060809151107.65080.qmail>