[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Getting SRP into the tree.

To: Slawek Zak <S.Zak@altkom.com>
Subject: Re: Getting SRP into the tree.
From: Gregory Steuck <greg@nest.cx>
Date: 24 Jan 2000 18:41:45 -0800
Cc: tech@openbsd.org
References: <200001231836.LAA16693@cvs.openbsd.org> <871z78pphi.fsf@localhost.localnet>

>>>>> "Slawek" == Slawek Zak <S.Zak@altkom.com> writes:

    Slawek> plain text (I know about S/Key but read on) and because of
    Slawek> possibility of getting your password when the attacker has
    Slawek> the root privs on the server you are connecting to. SRP
    Slawek> doesn't make you reveal your password to the server ever.

Don't forget about RSA authentication. This way your passphrase never
leaves your system. ssh(1)

About "ever", I don't remember if password can be changed without actually
giving it to the server, can it?

Thanks
Greg

References:
- Re: Getting SRP into the tree.
  - From: Theo de Raadt <deraadt@cvs.openbsd.org>
- Re: Getting SRP into the tree.
  - From: Slawek Zak <S.Zak@altkom.com>

Prev by Date: nfs error with openbsd 2.5
Next by Date: Re: Time counter?
Prev by thread: Re: Getting SRP into the tree.
Next by thread: AltQ
Index(es):
- Date
- Thread