Re: Question about automatically adding hostkey for users

From: Richard E. Silverman (slade@shore.net)
Date: 05/30/02

Previous message: Mike Tomlinson: "Re: OpenSSH 3.2.3p1 and Tru64 UNIX"
In reply to: Regina Hoffman: "Question about automatically adding hostkey for users"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: slade@shore.net (Richard E. Silverman)
Date: 30 May 2002 14:27:11 -0400

Why not simply add the host keys to the global known-hosts lists once and
be done with it? Auto-adding the keys leaves you open to
man-in-the-middle attacks and is not something you want to *plan* to use;
it's a compromise feature to be used interactively, and sparingly.

-- 
  Richard Silverman
  slade@shore.net

Previous message: Mike Tomlinson: "Re: OpenSSH 3.2.3p1 and Tru64 UNIX"
In reply to: Regina Hoffman: "Question about automatically adding hostkey for users"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: Question about automatically adding hostkey for users
... > Why not simply add the host keys to the global known-hosts lists once and ... Auto-adding the keys leaves you open to ... This application will be released to three different UNIX machines. ...
(comp.security.ssh)
Re: Question about automatically adding hostkey for users
... > Why not simply add the host keys to the global known-hosts lists once and ... Auto-adding the keys leaves you open to ... This application will be released to three different UNIX machines. ...
(comp.security.ssh)
Re: Question about automatically adding hostkey for users
... Why not simply add the host keys to the global known-hosts lists once and ... Auto-adding the keys leaves you open to ... it's a compromise feature to be used interactively, ...
(comp.security.ssh)