Re: virtual terminal dump
From: Hal Flynn (flynn@securityfocus.com)Date: 10/24/01
- Previous message: Charles Clancy: "Re: Chrooting Openssh"
- Maybe in reply to: Kurt Yoder: "virtual terminal dump"
- Next in thread: Hal Flynn: "Re: virtual terminal dump"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 24 Oct 2001 13:01:57 -0600 (MDT) From: Hal Flynn <flynn@securityfocus.com> To: <focus-linux@securityfocus.com> Subject: Re: virtual terminal dump Message-ID: <Pine.GSO.4.30.0110241251480.3320-100000@mail>
> Basically, you want to snoop upon the SSH session. There is something you
> have to understand. SSH means Secure Shell. It's built for security. The
> whole point of using SSH rather than regular telnet is to have a SECURE,
> ENCRYPTED connection so that no one can snoop upon it.
This is a misnomer. Secure Shell implies that the connection between
endpoints is secure, or cryptographically "secured." However, the data
still has to traverse multiple insecure layers, ala shell, kernel, etc.
This is one reason replacing the ssh and sshd programs with trojaned
versions is so popular. Doing so allows one to intercept traffic prior to
it being encrypted.
Hal Flynn
UNIX Focus Area Manager
SecurityFocus
"Semper Fidelis"
- Previous message: Charles Clancy: "Re: Chrooting Openssh"
- Maybe in reply to: Kurt Yoder: "virtual terminal dump"
- Next in thread: Hal Flynn: "Re: virtual terminal dump"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
