Re: File transfer using ssh

To: debian-security@lists.debian.org
Subject: Re: File transfer using ssh
From: Peter Cordes <peter@llama.nslug.ns.ca>
Date: Mon, 27 Aug 2001 15:11:55 -0300
Message-id: <[🔎] 20010827151155.C16434@llama.nslug.ns.ca>
Mail-followup-to: debian-security@lists.debian.org
In-reply-to: <[🔎] 87k7zsradw.fsf@hackerhue.ddts.net>
References: <[🔎] 35B49DB2B21CD311B7080008C7D9E8EB3C267F@FILEANDMAIL> <[🔎] 20010823155414.G26003@topic.com.au> <[🔎] 005d01c12ba1$96971fa0$47c332c3@estnet.ee> <[🔎] 20010823170847.I26003@topic.com.au> <[🔎] 20010823095043.B23465@nepomuk.matrix.uni-duisburg.de> <[🔎] 20010823181303.B16409@topic.com.au> <[🔎] 20010823150851.A23687@linuxasylum.net> <[🔎] 20010824203439.H6503@llama.nslug.ns.ca> <[🔎] 87k7zsradw.fsf@hackerhue.ddts.net>

On Fri, Aug 24, 2001 at 11:12:11PM -0600, Hubert Chan wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> >>>>> "Peter" == Peter Cordes <peter@llama.nslug.ns.ca> writes:
> 
> Peter>  It is secure when you have put the public key on the remote
> Peter> machine already. SSH is only vulnerable to man-in-the-middle when
> Peter> you first connect to a host, and accept the host-key.
> 
> Don't you mean "when you have put the public key on the *local* machine
> already"?  i.e. you have a local copy of the server's public key?
> AFAIK, putting a copy of your personal public key on the server doesn't
> really gain you much.

 Oops, I forgot that the remote side can't authenticate themselves to
you by proving they have the other half of your RSA key, since it is
not secret.  If both halves were secret, I think each side could
verify that the other side had the matching key.  This isn't how ssh
does things, though.

-- 
#define X(x,y) x##y
Peter Cordes ;  e-mail: X(peter@llama.nslug. , ns.ca)

"The gods confound the man who first found out how to distinguish the hours!
 Confound him, too, who in this place set up a sundial, to cut and hack
 my day so wretchedly into small pieces!" -- Plautus, 200 BCE

Reply to:

References:
- RE: File transfer using ssh
  - From: Curt Howland <curt@blue-edge-tech.com>
- Re: File transfer using ssh
  - From: Jason Thomas <jason@topic.com.au>
- Re: File transfer using ssh
  - From: "Jaan Sarv" <jaan@sarv.ee>
- Re: File transfer using ssh
  - From: Jason Thomas <jason@topic.com.au>
- Re: File transfer using ssh
  - From: Philipp Schulte <pschulte@uni-duisburg.de>
- Re: File transfer using ssh
  - From: Sam Couter <sam@topic.com.au>
- Re: File transfer using ssh
  - From: Samu <samu@linuxasylum.net>
- Re: File transfer using ssh
  - From: Peter Cordes <peter@llama.nslug.ns.ca>
- Re: File transfer using ssh
  - From: Hubert Chan <hackerhue@geek.com>

Prev by Date: Re: New security packages available
Next by Date: [ OT ] local packages vs official packages
Previous by thread: Re: File transfer using ssh
Next by thread: Re: File transfer using ssh
Index(es):
- Date
- Thread