Bugtraq mailing list archives

Re: sshd1 allows unencrypted sessions regardless of server policy

From: pavel () SUSE CZ (Pavel Machek)
Date: Tue, 14 Dec 1999 22:00:21 +0100

Hi!

Because passphrase-less hostkeys are 'encrypted' with cipher "none"
the code for this cipher is always compiled into the programs.  This
way the client is free to choose "none" and no server will complain.


And what? Malicious ssh client can make non-encrypted connection. But
malicious ssh client can also send carbon-copy of all communication to
www.cia.org:5000! There's no way to protect from malicious ssh
clients...

The current version OpenSSH-1.2.1 is not vulnerable.  The obvious


...and I don't see why this is called vulnerability.
                                                                Pavel

--
I'm pavel () ucw cz. "In my country we have almost anarchy and I don't care."
Panos Katsaloulis describing me w.r.t. patents me at discuss () linmodems org

Current thread:

Re: Local / Remote D.o.S Attack in War FTP Daemon 1.70 Vulnerability, (continued)
- - - Re: Local / Remote D.o.S Attack in War FTP Daemon 1.70 Vulnerability Malartre (Dec 14)
    - Re: Local / Remote D.o.S Attack in War FTP Daemon 1.70 Vulnerability Ussr Labs (Dec 14)
    - Re: Local / Remote D.o.S Attack in War FTP Daemon 1.70 Vulnerability Federico - Comnet S.A. (Dec 15)
    - Re: Local / Remote D.o.S Attack in War FTP Daemon 1.70Vulnerability ussr secure (Dec 16)
    - Re: Local / Remote D.o.S Attack in War FTP Daemon 1.70 Vulnerability Tim (Dec 15)
    - Re: Local / Remote D.o.S Attack in War FTP Daemon 1.70 Vulnerability Ussr Labs (Dec 15)
    - CERT Advisory CA-99-16 Buffer Overflow in Sun Solstice AdminSuite Daemon sadmind Elias Levy (Dec 14)
    - Statement: Local / Remote D.o.S Attack in War FTP Daemon 1.70 Jarle Aase (Dec 16)
  - sshd1 allows unencrypted sessions regardless of server policy Markus Friedl (Dec 14)
    - Re: sshd1 allows unencrypted sessions regardless of server policy Michael H. Warfield (Dec 14)
    - Re: sshd1 allows unencrypted sessions regardless of server policy Pavel Machek (Dec 14)
    - Re: sshd1 allows unencrypted sessions regardless of server policy Joseph Moran (Dec 14)
    - Re: sshd1 allows unencrypted sessions regardless of server policy David Schwartz (Dec 15)
    - SSH-1.2.27 & RSAREF2 exploit Iván Arce (Dec 14)
    - SSH 1 Why? Daniel P. Zepeda (Dec 14)
    - Re: SSH 1 Why? Emiliano Kargieman (Dec 15)
    - Re: SSH 1 Why? Emiel Kollof (Dec 15)
    - Re: SSH 1 Why? Iván Arce (Dec 16)
    - Re: SSH 1 Why? R. J. Wysocki (Dec 18)
    - Groupewise Web Interface Sacha Faust Bourque (Dec 19)
    - Re: Groupewise Web Interface Raymond Dijkxhoorn (Dec 20)

(Thread continues...)