Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Secure-Shell
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: passphrase/ssh2

from [\"JC\"] Network Security [Permanent Link]
Subject: RE: passphrase/ssh2
Date: Thu, 04 Aug 2005 17:32:23 -0700 
The private keys when stored are pem encoded. I presume you want to
search the file system and find unprotected keys. Provided the file
systems that you are searching are receptive to such a query. If a
private key is encrypted it will say so in the first N bytes of the
file. 

My experience has suggested if the key is encrypted, but the files
indicated as such would necessitate a custom ssh client. It would seem
to me in your favorite scripting or compiled language: check the file to
ensure ascii, open the file, check the first couple of lines to
determine key type: openssh2, openssh.com, putty etc... 
Then pass the next lines to your check functions if you don't find the
crypto notice then its an unprotected file.

I presume you are already versed in the command option the public key
entries can contain such can mitigate much of the risk associated with
an unencrypted private key. 


Best,

JC


 

How can I check if a ssh2 key has a passphrase set or not? I 
know the structure of a ssh1 private key but can't find 
anything on ssh2.

-mike
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Effective bandwidth reduction over WAN, David Cress
Next by Date:  unable to use SSH_ASKPASS, Popeanga Marian
Previous by Thread:  RE: passphrase/ssh2, Mark Senior
Next by Thread:  OpenSSH_4.1p1 hangs on exit using PAM/ChallengeResponse, Dustin Hoff
Indexes:  [Date] [Thread] [Top] [All Lists]