From owner-freebsd-questions@FreeBSD.ORG Fri Mar 18 12:09:35 2005 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 98FED16A4CE for ; Fri, 18 Mar 2005 12:09:35 +0000 (GMT) Received: from wproxy.gmail.com (wproxy.gmail.com [64.233.184.196]) by mx1.FreeBSD.org (Postfix) with ESMTP id 27CDF43D2D for ; Fri, 18 Mar 2005 12:09:35 +0000 (GMT) (envelope-from sovrevage@gmail.com) Received: by wproxy.gmail.com with SMTP id 69so80272wri for ; Fri, 18 Mar 2005 04:09:34 -0800 (PST) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:reply-to:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:references; b=pi33B3o4BEyEBE72rI4i+dQDyUynD2IZJ3DayE+hQlzh0HPCRJbZOD43J0VWd93w1XMCcHO02y7zV/Zp/7T9vylB4RIunFELj7pQrWfnmx4N6Lhf6AK40IGBw+7wV/2+1KebT1d1nFwHiPfy0E22bDbP0HcQJpZU1DKuCX5RpG4= Received: by 10.54.11.62 with SMTP id 62mr2484834wrk; Fri, 18 Mar 2005 04:09:34 -0800 (PST) Received: by 10.54.21.47 with HTTP; Fri, 18 Mar 2005 04:09:34 -0800 (PST) Message-ID: Date: Fri, 18 Mar 2005 13:09:34 +0100 From: =?ISO-8859-1?Q?Stian_=D8vrev=E5ge?= To: Dick Hoogendijk , freebsd-questions@freebsd.org In-Reply-To: <423ABD5F.5010007@noconname.org> Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable References: <20050318112317.GA35516@lothlorien.nagual.st> <423ABD5F.5010007@noconname.org> Subject: Re: ssh security X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: =?ISO-8859-1?Q?Stian_=D8vrev=E5ge?= List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 18 Mar 2005 12:09:35 -0000 Another problem is the Man-in-the-Middle problem, where you are led to believe that you are communicating with your home-computer, but your session is relayed on through a decrypting/encrypting gateway which is under someone else's controll. To counteract this, you should obtain your home-computer's SSH fingerprint, and verify that this is in fact the machine you are connecting to when launching putty at school. Regards, Stian On Fri, 18 Mar 2005 12:37:03 +0100, Jos=E9 Nicol=E1s Castellano wrote: > Dick Hoogendijk wrote: >=20 > >I log in from a remote windows computer on my school using PuTTY w/ > >ssh2. What I'd like to know is how *safe* is the login from this windows > >machine? I mean, can my login to my FreeBSD server at home be > >*monitored* by someone while I'm using this windows machine at work? > >Can the keystrokes that I use *in* PuTTY be seen by anybody on this > >windows network at work. If so, what can I do about it to be more safe? > > > >I would like to be able to login to my home computer without being > >worried about some sneaky system operator at work (school) ;-) > > > > > Mmm. Ssh only can *certificate* you that no one is capturing trafic > between server and client (freebsd and putty), ssh stablishes a ciphred > tunnel consistent in a two keys (private and public). >=20 > Ssh client ( or putty in your case ) don't *warranty* if your computer > client is running a keylogger or a trojan horse. If client is keylogged > or trojaned you are died :-D, buy an antivirus or something for M$ > Platforms. In *nix systems, relay to the administrator... >=20 > -- > Jose Nicolas Castellano > Presidente - Asociaci=F3n No cON Name > Tel: +34 616 727 675 > E-Mail : jncastellano@noconname.org > WWW: www.noconname.org >=20 >=20 > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.o= rg" >=20 >=20 >