Bugtraq mailing list archives

Re: SSH Protocol Trick

From: H D Moore <sflist () digitaloffense net>
Date: Mon, 22 Jul 2002 19:45:43 -0500

Ettercap has had this ability for months:

$ cat etter.filter.ssh
############################################################################
#                                                                          #
#  ettercap -- etter.filter -- filter chain file                           #
#                                                                          #
[ snip ]

##
#
#   This filter will substitute the SSH server response from SSH-1.99 to
#   SSH-1.51, so if the server supports both ssh1 and ssh2 we will force
#   it to use ssh1... ;)
#   server response :    SSH-1.99    both ssh1 and ssh2 supported
#                        SSH-1.51    only ssh1 supported
##
[ snip ]


http://ettercap.sf.net/

On Monday 22 July 2002 18:43, auto458545 () hushmail com wrote:

SSH Protocol Weakness Advisory
Monday, July 22 2002
- rtm

OK, here it is guys... I saw this today when I was looking at the newest
issue of phrack (59) and I discovered that an old little technique of SSH
man in the middle attacks I had been working on was now part of a Phrack
article....

Current thread:

SSH Protocol Trick auto458545 (Jul 22)
- Re: SSH Protocol Trick H D Moore (Jul 22)
- Re: SSH Protocol Trick stealth (Jul 23)
  - Message not available
    - Re: SSH Protocol Trick stealth (Jul 23)
- Re: SSH Protocol Trick Mikael Olsson (Jul 23)
- Re: SSH Protocol Trick Markus Friedl (Jul 25)