Subject: Re: ssh - are you nuts?!?
To: None <>
From: None <>
List: tech-security
Date: 12/19/2000 09:32:08
> > My bad - I was trying to get that out before rushing off to look
> > after the kids, I should have been more explicit in that SSL (which 
> > is what my stelnet uses)  and to a lesser extent SSH provide said integrity 
> > checks.
>Well, SSHv2 uses MACs, so it has real integrity checking.  There are
>also some SSHv1 implementations that have added additional ciphers
>that also use MACs.

	not sure if it is relevant to this topic, but the latest dsniff (2.3)
	include man-in-the-middle attack tool to SSHv1 (need to hijack the
	connection so you need to have control over DNS, or inject forged
	DNS reply).