[Subject Prev][Subject Next][Thread Prev][Thread Next][Subject Index][Thread Index]

Not Quite [WAS] Re: Very scary!

To: ilugc@xxxxxxxxxxxxxxxxxx
Subject: Not Quite [WAS] Re: Very scary!
From: Prabhu Ramachandran <prabhu@xxxxxxxxxxxxxxxxxx>
Date: Wed, 20 Dec 2000 22:21:03 +0530 (IST)
Delivered-to: ilug-c-archive@lists.linux-india.org
In-reply-to: <20001220054055.A17727@symonds.net>
References: <14912.27120.102092.789150@monster.linux.in> <20001220054055.A17727@symonds.net>
Reply-to: ilugc@xxxxxxxxxxxxxxxxxx
Sender: Prabhu Ramachandran <prabhu@xxxxxxxxxxxxxxxxxxxxxxxx>
Sender: ilugc-bounce@xxxxxxxxxxxxxxxxxx

hi,

>>>>> "Ravi" == Ravi  <ravi@xxxxxxxxxxx> writes:

<snip>
    Ravi> 		In short, its a media hype, and you can't
    Ravi> fight clueless users/admins using a tool like ssh and then
    Ravi> shove the blame onto ssh. OpenBSD rules, when it comes to
    Ravi> security! :>

Well, thanks for the info, but it still reminds us that the
man-in-the-middle attacks are possible with smart enough crackers.  I
thought all public key systems are liable to such attacks.  IIRC even
IPSec is liable to man-in-the-middle attacks.  Any ideas on how
easy/difficult it is to do this kind of stuff??  Or is there some kind
of manual key exchange that is necessary - like PGP key signing etc.??

prabhu
---
Visit our home page at: www.chennailug.org
Send e-mail to 'ilugc-request@xxxxxxxxxxxxxxxxxx' with 'unsubscribe' 
in either the subject or the body to unsubscribe from this list.

Follow-Ups:
- Re: Not Quite [WAS] Re: Very scary!
  - From: Ravi

References:
- Very scary!
  - From: Prabhu Ramachandran
- Not Quite [WAS] Re: Very scary!
  - From: Ravi

Prev by Subject: Not Quite [WAS] Re: Very scary!
Next by Subject: Re: Not Quite [WAS] Re: Very scary!
Previous by thread: Not Quite [WAS] Re: Very scary!
Next by thread: Re: Not Quite [WAS] Re: Very scary!
Index(es):
- Subject
- Thread