Slashdot Mirror

← Back to Stories (view on slashdot.org)

Overconfidence in SSH Protection

Posted by ryuzaki0 on from the don't-be-too-proud-of-this-technological-terror dept.

nitsudima writes to mention a post on the Informit site about the common misunderstandings surrounding SSH, and how well-intentioned admins may be creating holes in their own security by using it. From the article: "In UNIX, all things are files. To send network traffic, UNIX writes the traffic to the network device file. In this case, the connection to Box A (and that private key used for authentication) is a socket file. This file will shuttle the authentication traffic between Box A and Box P. So what's the risk? Maybe the hacker can't get a copy of the private key through the socket file, but something better (from his/her view) can be done. If the hacker has root on Box D, he or she can point a private copy of the agent forwarding software to that socket file and thereby point the authentication process to the administrator's credentials--the ones kept on the 'safe' intranet. What are the chances that the administrator has configured access to all the DMZ servers he controls?"

4 of 194 comments (clear)

  1. Re:Hopefully, a better summary... by grammar+fascist · · Score: 0, Troll

    As others have commented, this is kind of a "duh" moment. What's the next article?

    If you install and enable Apache, people can download arbitrary files from your web root directory! Also, driving cars requires gas, and plastic surgery made Paris Hilton uglier.

    Shocking stuff.

    --
    I got my Linux laptop at System76.
  2. Re:Huh? What? by andy753421 · · Score: 0, Troll

    Maybe this randomly generated summary will help... at least it can't be much confusing :)

    "SSH the wonder tool of the security set. I read one article about a vicious cycle! Want to know more? Comment on this article below. We'll skewer FTP and make a mockery of rsh. There are two types of port forwarding: * Local forwarding. Allows the client and the patching server, something normally verboten. The DMZ servers would route through the socket file, but something better (from his/her view) can be done. If the hacker can't get a copy of the agent forwarding risks. Depending on the local host adapter on any port the user chooses."

  3. Re:wait by Anonymous Coward · · Score: 0, Troll

    I run SSH on Vista... does that mean Vista sucks too?

    I run my cock across your mummy's face ... that means she sucks, too.

  4. Re:OpenBSD? by thogard · · Score: 0, Troll

    Details of your hashed root password are leaked by several operating systems while pretending to secure against packet sequence numbers. Since all they are doing is hashing a hashed password and a some other guessable things that could be pre-computed or queried, your roots security have already been compromised.