Craig Brozefsky allegedly said:
>
[...]
> > >deslogin is pretty good to, and unlike S/Key or SSH, I know of noone who
> > >has found methods to attack it succesfully.
> > >
> >
> > could you provide pointers to succesfull ssh attacks?
>
> Check ssh mailing lists. There was some concern with the ssh-agent and
> it's usage of fds.
That particular problem would more correctly be characterized as a
theoretical weaknes discovered by a sharp eyed user -- it would have
been very difficult to exploit.
There have been a couple of problems of a similar nature mentioned on
the list -- there was another one concerning the retention of keys in
memory when a process switched to non-privileged mode that I
remember.
However, both these problems required that the attacker already have
access to the machine running ssh, and, of course, by that point the
attacker has numberless other attacks to try.
Nor was there, to my knowlege, ever any report of an exploit that
made use of these reported weaknesses. Both were fixed very quickly,
in any case.
And, to my knowledge, there have been no reports of a successful
exploit of ssh.
Ssh is a new product, and not quite mature. The biggest problem with
it is not its level of security, but rather the fact that, like PGP,
it doesn't have a key management mechanism that scales to large sites.
--
Kent Crispin "No reason to get excited",
kent @
songbird .
com,kc @
llnl .
gov the thief he kindly spoke...
PGP fingerprint: B6 04 CC 30 9E DE CD FE 6A 04 90 BB 26 77 4A 5E
References:
|
|
