nanog mailing list archives

Re: telnet vs ssh on Core equipment , looking for reasons why ?

From: fingers <fingers () fingers co za>
Date: Tue, 31 Jul 2001 17:38:02 +0200 (SAST)

Hi

Pardon for blowing your bubble but sniffing ssh keyexchange does not do you
any good. The symmetric key is exchanged via a channel aready secured. The
keys that is used to secure the channel used to exchange the symmetric key
are exchanged via DH-based protocol. If you want to spend your time
factoring primes for next 500 years to extract the key, you are more than
welcome to try. It is crypto-101.


ssh1 keys can be sniffed easily enough with things like ettercap and the
like. Last I checked, it couldn't do ssh2, dunno what the status is
now....

--Rob

Current thread:

Re: telnet vs ssh on Core equipment , looking for reasons why ?, (continued)
- - - Re: telnet vs ssh on Core equipment , looking for reasons why ? fingers (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Stephen J. Wilcox (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? alex (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Greg Maxwell (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? alex (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Greg Maxwell (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? alex (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? fingers (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? alex (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Scott Francis (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? fingers (Jul 31)
    - RE: telnet vs ssh on Core equipment , looking for reasons why ? Deepak Jain (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Ariel Biener (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Stephen J. Wilcox (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Ariel Biener (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Stephen J. Wilcox (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Bob K (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? up (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Gary E. Miller (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Dan Hollis (Jul 31)
    - Re: telnet vs ssh on Core equipment , looking for reasons why ? Ariel Biener (Jul 31)

(Thread continues...)