recent breakins

Gert Doering gert at
Fri Jun 1 18:12:56 EST 2001


On Fri, Jun 01, 2001 at 11:24:49AM +0900, Tom Holroyd wrote:
> But what about multiple links?  It should be possible to forward
> authentication requests back to the user's keyboard.  The SRP protocol can
> be forwarded over any number of links, *even through a trojaned ssh*
> without revealing any information that a cracker can use.

Same with agent forwarding and using RSAAuthentication.

USENET is *not* the non-clickable part of WWW!
Gert Doering - Munich, Germany                             gert at
fax: +49-89-35655025                        gert.doering at

More information about the openssh-unix-dev mailing list