On Fri, 22 Oct 2004, Andreas Bittner wrote: Hi, SSHv1 is not insecure because it might be affected by MiM attacks (same can work for SSHv2, easier indeed) but because it has some short-comings in the protocol. Like the integrity of packets relies on a CRC32 sum which is not acceptable (versus a real has-sum in SSH2) anymore. For SSH1, a MiM is also possible for RSA authentication if I remember correctly, the SSH2 pubkey authentication is not MiM-able. So, in conculsion, use SSH2 plus pubkey authentication. :-) Sebastian
Cristian Del Carlo wrote:
I have an other important question. If i use ssh1 with the RSA key (with the passphrase) i have the same security problem?
i am not a technical expert for the ssh protocol, but as far as i have always heard, ssh v1 is vulnerable to man in the middle attacks as others also pointed out on the list. i guess its not dependant of the authentication means you use. migrate over to ssh v2 as soon as possible and you will be safer.
-- ~ ~ perl self.pl ~ $_='print"\$_=\47$_\47;eval"';eval ~ krahmer@suse.de - SuSE Security Team ~