Bugtraq mailing list archives
Re: SSH Protocol Trick
From: H D Moore <sflist () digitaloffense net>
Date: Mon, 22 Jul 2002 19:45:43 -0500
Ettercap has had this ability for months: $ cat etter.filter.ssh ############################################################################ # # # ettercap -- etter.filter -- filter chain file # # # [ snip ] ## # # This filter will substitute the SSH server response from SSH-1.99 to # SSH-1.51, so if the server supports both ssh1 and ssh2 we will force # it to use ssh1... ;) # server response : SSH-1.99 both ssh1 and ssh2 supported # SSH-1.51 only ssh1 supported ## [ snip ] http://ettercap.sf.net/ On Monday 22 July 2002 18:43, auto458545 () hushmail com wrote:
SSH Protocol Weakness Advisory Monday, July 22 2002 - rtm OK, here it is guys... I saw this today when I was looking at the newest issue of phrack (59) and I discovered that an old little technique of SSH man in the middle attacks I had been working on was now part of a Phrack article....
Current thread:
- SSH Protocol Trick auto458545 (Jul 22)
- Re: SSH Protocol Trick H D Moore (Jul 22)
- Re: SSH Protocol Trick stealth (Jul 23)
- Message not available
- Re: SSH Protocol Trick stealth (Jul 23)
- Message not available
- Re: SSH Protocol Trick Mikael Olsson (Jul 23)
- Re: SSH Protocol Trick Markus Friedl (Jul 25)