[Bug 877] ssh 3.8.1p1 client cannot disable encryption with "-c none"

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Tue Jun 8 10:22:07 EST 2004


http://bugzilla.mindrot.org/show_bug.cgi?id=877





------- Additional Comments From mohit_aron at hotmail.com  2004-06-08 10:22 -------
> How do you know when you are beyond a VPN perimeter? How do you know some
> routing screwup isn't exposing your traffic? How do you know some malicious
> insider isn't sniffing? How do you know that the user won't forget that the
> channel is not encrypted and accidentally type a root password into "su"?

How do you know the user won't forget he's logged in using 'telnet' and then
type a root password into "su" ?

The idea is to make it difficult for anyone to use the unsecure mode, but at 
least permit it for people who really want to.




------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.




More information about the openssh-bugs mailing list