[prev in list] [next in list] [prev in thread] [next in thread]
List: freenx-knx
Subject: [FreeNX-kNX] nxsetup --setup-nomachine-key (Was: Alioth projekt for
From: Gian Filippo Pinzari <pinzari () nomachine ! com>
Date: 2005-06-15 13:05:03
Message-ID: 42B0277F.7050103 () nomachine ! com
[Download RAW message or body]
Felix Schumacher wrote:
> if "nxsetup --setup-nomachine-key" installs a pre-computed ssh private
> key
> for use with the secure channel. I believe anyone could intercept this
> secure
> Channel with a "man in the middle" attack. And get the clear-text
> passwords
> for the user, which are sent over the (than not so) secure channel.
No, because the key we are talking about is not used to encrypt the
traffic but only for authenticating the nx user to the SSHD server.
SSHD will then yield the control to nxserver, being nxserver the nx
user's login shell. Both host authentication and all the other TLS
features of SSH are entirely preserved.
/Gian Filippo.
_______________________________________________
FreeNX-kNX mailing list
FreeNX-kNX@kde.org
https://mail.kde.org/mailman/listinfo/freenx-knx
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic