From owner-freebsd-hackers Fri Dec 22 16:32:56 2000 From owner-freebsd-hackers@FreeBSD.ORG Fri Dec 22 16:32:53 2000 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from ducky.nz.freebsd.org (ns1.unixathome.org [203.79.82.27]) by hub.freebsd.org (Postfix) with ESMTP id 03A0A37B402 for ; Fri, 22 Dec 2000 16:32:48 -0800 (PST) Received: from wocker (wocker.int.nz.freebsd.org [192.168.0.99]) by ducky.nz.freebsd.org (8.9.3/8.9.3) with ESMTP id NAA13382; Sat, 23 Dec 2000 13:32:38 +1300 (NZDT) Message-Id: <200012230032.NAA13382@ducky.nz.freebsd.org> From: "Dan Langille" Organization: langille.org To: David Preece Date: Sat, 23 Dec 2000 13:32:36 +1300 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: Re: ssh - are you nuts?!? Reply-To: dan@langille.org Cc: freebsd-hackers@FreeBSD.ORG Priority: normal In-reply-to: <5.0.0.25.1.20001223132307.01b00b70@pop3.i4free.co.nz> References: <200012222337.PAA20885@spammie.svbug.com> X-mailer: Pegasus Mail for Win32 (v3.12c) Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On 23 Dec 2000, at 13:25, David Preece wrote: > At 15:37 22/12/00 -0800, you wrote: > > >The question asked is: why you believe ssh is beter > >than say telnet. Or what advantages SSH has in general. > > Sorry, don't have time to reply to this properly. > > The main evil of ssh is that server authentication is not enforced, making > mounting a man-in-the-middle attack basically trivial. It is possible. It is not trivial. -- Dan Langille The FreeBSD Diary - http://freebsddiary.org/ FreshPorts - http://freshports.org/ NZ Broadband - http://unixathome.org/broadband/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message