Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Secure-Shell
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: ssh without encryption (authentification only)?

from [Tristan Schmelcher] Network Security [Permanent Link]
Subject: Re: ssh without encryption (authentification only)?
Date: Fri, 28 Sep 2007 10:11:47 -0700 
Alternatively, just specify "-c blowfish". Blowfish is a fairly light
cipher.

On Thu, 2007-27-09 at 16:30 -0400, Austin Murphy wrote:

Hi Peter,

You want a "null cipher" for the data transport after authentication.
My understanding is that this is possible, but you need to recompile
OpenSSH.

Austin

On 9/27/07, Peter Daum <gator_ml@yahoo.de> wrote:

Hi,

... maybe a little heretic: is there any way to tell ssh to forward data
without any encryption. (or using some very "light" cipher)?

I am experimenting with a central backup server that will get data from
many hosts at the same time via rsync+ssh.
While I am very concerned about access control (thus ssh/public key
authentification), the data is transfered over a network that can't
easily be eavesdropped, so the data encryption would be expendable.
After doing some tests, it looks like the additional CPU load caused
by data encryption might be too much ...

Regards,
              Peter Daum

P.S.: I had posted this question before; as I just noticed,
      it was rejected with the comment
      "Please tell the list which version and vendor of SSH you are using"
      The machines in question (all Linux) run different versions of openssh
      (version 4.1 ..4.7, Suse, Debian,or self-compiled); I hadn't noticed
      a new option regarding this issue in newer versions ...
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: OpenSSH slow to establish connections, Joseph Spenner
Next by Date:  Re: OpenSSH slow to establish connections, Simon Wilkinson
Previous by Thread:  Re: OpenSSH slow to establish connections, Joseph Spenner
Next by Thread:  Re: ssh without encryption (authentification only)?, Peter Daum
Indexes:  [Date] [Thread] [Top] [All Lists]