Re: ssh security question

To: Martin F Krafft <madduck@madduck.net>, debian users <debian-user@lists.debian.org>
Subject: Re: ssh security question
From: "Jeremy T. Bouse" <Jeremy.Bouse@UnderGrid.net>
Date: Sun, 26 Aug 2001 13:32:46 -0700
Message-id: <[🔎] 20010826133246.A18592@undergrid.net>
In-reply-to: <[🔎] 20010826221108.A1404@fishbowl.madduck.net>
References: <[🔎] 20010826221108.A1404@fishbowl.madduck.net>

	I think in this case this was only able to succeed becuase you
were actually in control of that session... Had it been someone else
spoofing they would also have to already obtain the session keys being
used... 

	Jeremy

On Sun, Aug 26, 2001 at 10:11:08PM +0200, Martin F Krafft wrote:
> my laptop has two net interfaces, one wired and one wireless. they
> have different MAC addresses, but i configured my DHCP server to treat
> them the same so that i usually have the same IP no matter what card i
> use.
> 
> i just noticed a curious bit of possible security awkwardness. with my
> wired card, i established an ssh2 connection to another machine on my
> subnet, then i proceeded to swap the cards - and i could continue
> using my ssh2 session as soon as the new card received an IP (the same
> one). now i ask you - this smells like a problem to me, or not?
> shouldn't sshd at least worry about the MAC address too (can it?) just
> an IP is too easy to spoof (MAC are too i guess).
>

Reply to:

References:
- ssh security question
  - From: Martin F Krafft <madduck@madduck.net>

Prev by Date: mod-ssl vs apache-ssl
Next by Date: Re: "renicing" a network application
Previous by thread: ssh security question
Next by thread: Re: ssh security question
Index(es):
- Date
- Thread