Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Secure-Shell
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Decrypting an ssh session knowing the private key?

from [Giancarlo Razzolini] Network Security [Permanent Link]
Subject: Re: Decrypting an ssh session knowing the private key?
Date: Mon, 09 Oct 2006 15:11:40 -0300 
Patrick Morris escreveu:

I would like to write a program that could deycrypt ssh 
communication by using the private key of the server 
computer. This should be possable right? And I should be able 
to use libraries the openssh has already writen. In fact the 
majority of the code should already be writen right? I should 
just need to send a packet with the private key to a function right?


You'd also need the user's private key.




Not to mention the fact that the keys are not generated on server
neither on the client. A part is generated on the server and other on
the client. None of them has the full key at any time. Also, the keys
are re-negotiated every hour (as far as i remember). You will only be
able to impersonate the server to think that you are the client, not
getting clear text of an already established session.

My regards,
-- 
Giancarlo Razzolini
Linux User 172199
Red Hat Certified Engineer no:804006389722501
Moleque Sem Conteudo Numero #002
Slackware Current
OpenBSD Stable
Ubuntu 6.06 Dapper Drake
Snike Tecnologia em Informática
4386 2A6F FFD4 4D5F 5842  6EA0 7ABE BBAB 9C0E 6B85

Attachment: signature.asc
Description: OpenPGP digital signature

[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  sshd_config access keywords question., Emerson Farrugia
Next by Date:  connection with RSA and DSA, mansour77
Previous by Thread:  RE: Decrypting an ssh session knowing the private key?, Patrick Morris
Next by Thread:  sshd_config access keywords question., Emerson Farrugia
Indexes:  [Date] [Thread] [Top] [All Lists]