Re: Authentication

From: "Richard E. Silverman" <res@xxxxxxxx>
Date: 26 Aug 2007 11:52:29 -0400

"NN" == Nate, Nano <nanonut@xxxxxxxxx> writes:

NN> So I understand the DSA/RSA authentication procedure and how it
NN> provides authenication of a client from a servers perspective, but
NN> what is there implemented in SSH to provide authentication of the
NN> server from the clients perspective.? I know that on connection,
NN> the server sends the client a key, identifying itself to the
NN> client. But what prevents, a rogue client from grabbing the
NN> identification #, and masking the servers IP, and setting up their
NN> own rogue server, with a the same server id?

The rogue server does not possess the corresponding private hostkey.

--
Richard Silverman
res@xxxxxxxx

.

References:
- Authentication
  - From: Nate, Nano

Prev by Date: how do I download OpenSSH 4.6p1 for Windows?
Next by Date: Re: how do I download OpenSSH 4.6p1 for Windows?
Previous by thread: Authentication
Next by thread: how do I download OpenSSH 4.6p1 for Windows?
Index(es):
- Date
- Thread

Relevant Pages

Re: WCF security advice (and clarification) needed
... You, the client, resolve the foo.mycompany.com hostname within your ... TCP/IP) with that ticket as the security token. ... There are two parties participating in a security scenario, the server ... HTTP supports other authentication ...
(microsoft.public.dotnet.framework.webservices)
Re: Aironet 1200/Radius Help Needed
... I just fired up a W2003 Advanced Server so that I can take ... >> IAS servers (do I need a separate certificate for the secondary IAS ... >> of authentication since it involves just installing the certificate on ... >between the AP and the client. ...
(microsoft.public.internet.radius)
Re: Windows Authentication, Single sign on and Active Directory
... service proxy client fails to connect due to authentication failure and then ... Co-author of "The .NET Developer's Guide to Directory Services Programming" ... The server is always in the domain. ...
(microsoft.public.dotnet.framework.aspnet.security)
Re: Outlook -> remote exchange -> always wants a password
... I have my server set to use Integrated Windows authentication over SSL. ... almost certainly "break" your existing users if the client setup does not ... Close out of these configuration dialogs, ...
(microsoft.public.windows.server.sbs)
Re: What doesnt lend itself to OO?
... >> proxy and instructs the server to constuct the real object. ... rather than client code. ... If 'clock' is instantiated in the server, ... > for the server interface at the OOA level. ...
(comp.object)