Displaying 2 results from an estimated 2 matches for "goodhost".
Did you mean:
goodhist
2010 Feb 01
1
"phishing" (was: [patch] Automatically add keys to agent)
[ Sorry, I did not see the renamed thread until I'd already replied on
the old one. Calling this a phishing attack is exactly right. ]
On 2010-01-30, Joachim Schipper wrote:
> If I understand you correctly, you argue that connecting to malicious
> hosts is currently secure, and will remain secure, but that it will
> become easier to convince people to send the passphrase for
2000 Jul 31
1
find canonic host name
...ic key in a known_hosts file.
getaddrinfo seems (on Debian GNU/Linux 2.2, GNU libc 2.1.3) to look
up the IP address of the entered host then reverse look up the IP
address to get the cannonical name. I think this means that my DNS
administrator can control the cannonical name. So, if I have both
goodhost and badhost in my known_hosts file, and the DNS admin makes
badhost the cannonical name of goodhost, ssh would successfully
connect me to badhost when I ask to connect to goodhost. (I realize
this applies only when I enter a host without dots, but that is only
a small consolation.) I would expect...