Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Secure-Shell
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: ssh without encryption (authentication only)?

from [Val Baranov] Network Security [Permanent Link]
Subject: Re: ssh without encryption (authentication only)?
Date: Tue, 2 Oct 2007 08:46:47 -0400 
Peter, 
Use High Performance SSH/SCP - HPN-SSH - see 
http://www.psc.edu/networking/projects/hpn-ssh/ for the details. 

Regards, 
Val Baranov
CISSP CEH MCSE CCA
Sr. Unix Systems Administrator
Global Infrastructure Service Delivery
Revlon
Daytime ph. #:  919-603-3169
Cell ph. #:          919-274-9960
e-mail:               val.baranov@revlon.com


"Austin Murphy" <austin.murphy@gmail.com> 
Sent by: listbounce@securityfocus.com 
09/28/2007 10:51 AM  
 
 To
 "Peter Daum" <gator_ml@yahoo.de> 
 cc
 secureshell@securityfocus.com 
 Subject
 Re: ssh without encryption (authentification only)?
 
 
 
 
 



Hi Peter,

You want a "null cipher" for the data transport after authentication.
My understanding is that this is possible, but you need to recompile
OpenSSH.

Austin

On 9/27/07, Peter Daum <gator_ml@yahoo.de> wrote:

Hi,

... maybe a little heretic: is there any way to tell ssh to forward data
without any encryption. (or using some very "light" cipher)?

I am experimenting with a central backup server that will get data from
many hosts at the same time via rsync+ssh.
While I am very concerned about access control (thus ssh/public key
authentification), the data is transfered over a network that can't
easily be eavesdropped, so the data encryption would be expendable.
After doing some tests, it looks like the additional CPU load caused
by data encryption might be too much ...

Regards,
              Peter Daum

P.S.: I had posted this question before; as I just noticed,
      it was rejected with the comment
      "Please tell the list which version and vendor of SSH you are using"
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • Re: ssh without encryption (authentication only)?, Val Baranov <=
Previous by Date:  ssh works on one way, remote X can't start locally, Stephen Liu
Next by Date:  lots of "Postponed publickey for oracle from <IP>", Russell Fulton
Previous by Thread:  ssh works on one way, remote X can't start locally, Stephen Liu
Next by Thread:  lots of "Postponed publickey for oracle from <IP>", Russell Fulton
Indexes:  [Date] [Thread] [Top] [All Lists]