[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] DANGER WILL ROBINSON!!! A tool for MIM/c*apfilt and poisoning listed on /.
- Subject: Re: [cobalt-security] DANGER WILL ROBINSON!!! A tool for MIM/c*apfilt and poisoning listed on /.
- From: Stuart Robinson <stuart@xxxxxxxxxxxxxxxxx>
- Date: Fri, 10 Aug 2001 11:45:46 +0100
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
It's the fingerprint (similar to a checksum but serving a different purpose) of public key of the ssh server. It should never change. If it does you're being MITMed.
The idea is that when you set up your server (in a trusted environment) you make a note of the key fingerprint. You then check it before logging in in future. Most ssh clients will check it automatically after you accept it for the first time.
As always, corrections are more than welcome.
Stu.
On Friday 10-Aug-2001 at 05:55, Carrie Bartkowiak <ravencarrie@xxxxxxxx> wrote:
> On Fri, 10 Aug 2001 10:32:26 +0100, Stuart Robinson mumbled something
> like:
> >>> Key fingerprint is 1024
> >>11:d0:2b:44:e2:7e:e5:b6:44:eb:db:76:6c:d5:ea:3e.
>
> What information is this telling us? Is there somewhere that we could
> plug this string of gibberish in and get an IP or something?
> --
> CarrieB
> "The people who get on in this world are the people who get up and
> look for the circumstances they want, and, if they can´t find them,
> make them." --George Bernard Shaw
>
>
> _______________________________________________
> cobalt-security mailing list
> cobalt-security@xxxxxxxxxxxxxxx
> http://list.cobalt.com/mailman/listinfo/cobalt-security
>