Re: known_hosts are encrypted ?
On Tue, 2007-04-03 at 22:21 +0200, Sven Arvidsson wrote:
> On Tue, 2007-04-03 at 23:10 +0530, Bhasker C V wrote:
> > I figured this out
> > There is /etc/ssh/ssh_config which has an option HashKnownHosts
> > if
> > HashKnownHosts yes
> > then the hostnames are not in plain text in the known_hosts file of the
> > user. So, bash_completion is not able to get the hostnames.
>
> If you want to know more about the reason behind this, you should read
> this article, "SSH as a worm vector"[0]. This was also discussed[1] on
> debian-devel when HashKnownHosts was set as default, you might find some
> tips about making use of it there,
>
> 0. http://lwn.net/Articles/135506/
> 1. http://lists.debian.org/debian-devel/2005/07/msg00023.html
Sneaky System Admin or System "root" or Someone with sudo privs to see
them.
--
greg, greg@gregfolkert.net
Novell's Directory Services is a competitive product to Microsoft's
Active Directory in much the same way that the Saturn V is a competitive
product to those dinky little model rockets that kids light off down at
the playfield. -- Thane Walkup
Reply to: