Question about Server Authentication

Dan Kaminsky dan at doxpara.com
Sat Oct 3 08:06:00 EST 2009


Oh don't give up so quick :). I was just seeing if a really stupid fix  
would work.

Give me a precise client/server config that repros your bug?



On Oct 2, 2009, at 2:06 PM, Steeve BARBEAU <petfire85 at yahoo.fr> wrote:

> So, I've tried your modification but it doesn't work, I'll search  
> and I hope I'll find the solution. Thanks for your help Dan and Damien
>
> On Fri, Oct 2, 2009 at 8:36 AM, Dan Kaminsky <dan at doxpara.com> wrote:
> Go into your OpenSSH source, hostfile.c.
>
> Find the line:
>
>                if (!hostfile_check_key(kbits, found, host, filename,  
> linenum))
>                        continue;
>
> Right before it, add:
>
> if(key != NULL &&
>  found != NULL &&
>  key->type != found->type) { continue; }
>
> Alternatively I'll gin you up a patch file if you tell me what build
> you want me to make one against.
>
> NO IDEA if this'll work but I think it hits what you're talking about.
>
> On Fri, Oct 2, 2009 at 8:24 AM, Steeve BARBEAU <petfire85 at yahoo.fr>  
> wrote:
> > Yes of course.
> >
> >
>


More information about the openssh-unix-dev mailing list