|
|
|
|
|
|
by microtonal
4616 days ago
|
|
|
Could a non root user just read the host keys from sshd, No, file permissions. then kill it and serve them? Users with uid != 0 cannot kill other user's processes. Or could it even just MITM it? No, host key verification ensures that you are talking to the intended ssh daemon without packets being intercepted. The host key is a public key of the SSH server, which is verified by the client to be the key registered for that particular host. Since only the server has corresponding private key, the MITM cannot eavesdrop on the key exchange. |
|
|