nanog mailing list archives

Re: telnet vs ssh on Core equipment , looking for reasons why ?

From: Scott Francis <darkuncle () darkuncle net>
Date: Tue, 31 Jul 2001 15:26:49 -0700

On Tue, Jul 31, 2001 at 11:48:55AM -0400, alex () yuriev com exclaimed:

*Yawn*

warning: Executing /opt/bin/ssh1 for ssh1 compatibility.
Host key not found from the list of known hosts.
!! If host key is new or changed, ssh1 protocol is vulnerable to an
!! attack known as false-split, which makes it relativily easy to
!! hijack the connection without the attack being detected. It is
!! highly advisable to turn StrictHostKeyChecking to "yes" and
!! manually copy host keys to known_hosts.
Are you sure you want to continue connecting (yes/no)?


It does not matter what kind of security system you have if you dont bother
to actually engage it.


Amen to that.

Alex


-- 
Scott Francis                   darkuncle@ [home:] d a r k u n c l e . n e t
Systems/Network Manager          sfrancis@ [work:]         t o n o s . c o m
UNIX | IP networks | security | sysadmin | caffeine | BOFH | general geekery
GPG public key 0xCB33CCA7              illum oportet crescere me autem minui

Attachment: _bin
Description:

Current thread:

Re: telnet vs ssh on Core equipment , looking for reasons why ?, (continued)
- - - Re: telnet vs ssh on Core equipment , looking for reasons why ? Stephen J. Wilcox (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? fingers (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Stephen J. Wilcox (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? alex (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Greg Maxwell (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? alex (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Greg Maxwell (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? alex (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? fingers (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? alex (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Scott Francis (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? fingers (Jul 31)
    - RE: telnet vs ssh on Core equipment , looking for reasons why ? Deepak Jain (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Ariel Biener (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Stephen J. Wilcox (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Ariel Biener (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Stephen J. Wilcox (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Bob K (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? up (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Gary E. Miller (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Dan Hollis (Jul 31)

(Thread continues...)