Re: How to decrypt a connection SSH v2?



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Yo Paul

On Thu, 10 Jul 2008, Paul Melson wrote:

On Wed, Jul 9, 2008 at 10:05 PM, Ulises2k <ulises2k@xxxxxxxxx> wrote:
How to decrypt a connection SSH v2?
I have the private and public keys.
I have all sesion sniffed.

I'm afraid that's not enough. SSH implements forward secrecy [1],


- From your wikipedia reference:

"In an authenticated key-agreement protocol that uses public key
cryptography, perfect forward secrecy (or PFS) is the property
that ensures that a session key derived from a set of long-term
public and private keys will not be compromised if one of the
private keys is compromised in the future."

I assume if the attacker has the public and private keys from not just
one, but both ends, that PFS is not an obstacle.

RGDS
GARY
- ---------------------------------------------------------------------------
Gary E. Miller Rellim 109 NW Wilmington Ave., Suite E, Bend, OR 97701
gem@xxxxxxxxxx Tel:+1(541)382-8588

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (GNU/Linux)

iD8DBQFIdiKo8KZibdeR3qURAtBXAKCKtVv1QcGyR5KRX+xClbcPqpy+UwCg8cQe
TVJP26xHZEzt4ipvGkGlK44=
=DWLn
-----END PGP SIGNATURE-----


------------------------------------------------------------------------
This list is sponsored by: Cenzic

Top 5 Common Mistakes in
Securing Web Applications
Get 45 Min Video and PPT Slides

www.cenzic.com/landing/securityfocus/hackinar
------------------------------------------------------------------------



Relevant Pages

  • Re: Firewall security: Re: Problems with simple Samba file share
    ... > against is people who already stole the private keys using them to do ... > once they had access to backups, but I grant you there are diffeernt ... Peter, do I really have to go back through nearly 200 posts and prove to ...
    (comp.os.linux.misc)
  • Re: Can I implement an autofill feature with a textbox?
    ... the arrow keys, though. ... Private mAutoFill As New ArrayList ... Private mblnLockout As Boolean ...
    (microsoft.public.dotnet.framework.windowsforms)
  • Re: Aussendienstanbindung
    ... Ich wollte nur wissen, ob es bereits Verfahren gibt, mit denen man die Erzeugung des "private keys" so steuern kann, dass eine definierte Menge "M" von passenden "public keys" herauskommt, auch wenn dadurch die fiktive Sicherheit um den Faktor "M" verringert wird. ...
    (de.comp.security.misc)
  • Re: Encrypting files in XP
    ... You need to get the other user's public key (_not_ private key!). ... All that user has to do is encrypt one file on his PC and he ... if you lose your private keys you lose access to your files for good! ... This password protect user profile in which private ...
    (microsoft.public.windowsxp.security_admin)
  • Re: Certificates received from Windows CertStore: wrong public key (and incorrec
    ... I just did again a few tests with new generated certificates with larger ... RSAParameters exported from oRSA always have sizes corresponding ... The bogus private RSAParameters would be used, ... > size RSA keys also). ...
    (microsoft.public.dotnet.security)