combining openSSH and DNSSEC

Pete Chown Pete.Chown at skygate.co.uk
Tue Aug 15 04:14:58 EST 2000


Stefan Mangard wrote:

> The openSSH client I modified now authenticates a server through DNSSEC.

That sounds like an interesting idea, but surely DNSSEC only makes
sure that you get the authentic IP address?  If the connection is
hijacked later on, you are no better off.

Personally I am very interested in playing with different ways of
doing authentication...

-- 
Pete





More information about the openssh-unix-dev mailing list