Re: gss userauth

To: Joseph Galbraith <galb-list%vandyke.com@localhost>
Subject: Re: gss userauth
From: Markus Friedl <markus%openbsd.org@localhost>
Date: Mon, 25 Aug 2003 17:45:32 +0200

On Mon, Aug 25, 2003 at 09:00:54AM -0600, Joseph Galbraith wrote:
> I'm sure I'm being niave (or I just drove all night
> and my brain isn't working correctly yet), but, assuming
> the SSH layer is secure (and if you want to secure the
> SSH layer using gss, you can use the kex method), what
> attack does this prevent?

i don't know GSS API, but for pubkey auth the session id is used
to 'bind' the signature to the connection.

References:
- Re: gss userauth
  - From: Jeffrey Hutzelman
- Re: gss userauth
  - From: Joseph Galbraith

Prev by Date: Re: gss userauth
Next by Date: Re: I-D ACTION:draft-galb-secsh-publickey-subsystem-02.txt
Previous by Thread: Re: gss userauth
Next by Thread: RE: gss userauth
Indexes:

Home | Main Index | Thread Index | Old Index