- markus@cvs.openbsd.org 2002/07/24 16:11:18
     [hostfile.c hostfile.h sshconnect.c]
     print out all known keys for a host if we get a unknown host key,
     see discussion at http://marc.theaimsgroup.com/?t=101069210100016&r=1&w=4

     the ssharp mitm tool attacks users in a similar way, so i'd like to
     pointed out again:
        A MITM attack is always possible if the ssh client prints:
        The authenticity of host 'bla' can't be established.
     (protocol version 2 with pubkey authentication allows you to detect
     MITM attacks)
4 files changed
tree: 88ad1d4bbb9cd865c154f24ad12feafd7e302ccd
  1. .cvsignore
  2. CREDITS
  3. ChangeLog
  4. INSTALL
  5. LICENCE
  6. Makefile.in
  7. OVERVIEW
  8. README
  9. README.privsep
  10. README.smartcard
  11. RFC.nroff
  12. TODO
  13. WARNING.RNG
  14. acconfig.h
  15. aclocal.m4
  16. atomicio.c
  17. atomicio.h
  18. auth-bsdauth.c
  19. auth-chall.c
  20. auth-krb4.c
  21. auth-krb5.c
  22. auth-options.c
  23. auth-options.h
  24. auth-pam.c
  25. auth-pam.h
  26. auth-passwd.c
  27. auth-rh-rsa.c
  28. auth-rhosts.c
  29. auth-rsa.c
  30. auth-sia.c
  31. auth-sia.h
  32. auth-skey.c
  33. auth.c
  34. auth.h
  35. auth1.c
  36. auth2-chall.c
  37. auth2-hostbased.c
  38. auth2-kbdint.c
  39. auth2-none.c
  40. auth2-pam.c
  41. auth2-pam.h
  42. auth2-passwd.c
  43. auth2-pubkey.c
  44. auth2.c
  45. authfd.c
  46. authfd.h
  47. authfile.c
  48. authfile.h
  49. bufaux.c
  50. bufaux.h
  51. buffer.c
  52. buffer.h
  53. canohost.c
  54. canohost.h
  55. channels.c
  56. channels.h
  57. cipher.c
  58. cipher.h
  59. clientloop.c
  60. clientloop.h
  61. compat.c
  62. compat.h
  63. compress.c
  64. compress.h
  65. config.guess
  66. config.sub
  67. configure.ac
  68. contrib/
  69. crc32.c
  70. crc32.h
  71. deattack.c
  72. deattack.h
  73. defines.h
  74. dh.c
  75. dh.h
  76. dispatch.c
  77. dispatch.h
  78. entropy.c
  79. entropy.h
  80. fatal.c
  81. fixpaths
  82. fixprogs
  83. getput.h
  84. groupaccess.c
  85. groupaccess.h
  86. hostfile.c
  87. hostfile.h
  88. includes.h
  89. install-sh
  90. kex.c
  91. kex.h
  92. kexdh.c
  93. kexgex.c
  94. key.c
  95. key.h
  96. log.c
  97. log.h
  98. loginrec.c
  99. loginrec.h
  100. logintest.c
  101. mac.c
  102. mac.h
  103. match.c
  104. match.h
  105. md5crypt.c
  106. md5crypt.h
  107. mdoc2man.pl
  108. misc.c
  109. misc.h
  110. mkinstalldirs
  111. moduli
  112. monitor.c
  113. monitor.h
  114. monitor_fdpass.c
  115. monitor_fdpass.h
  116. monitor_mm.c
  117. monitor_mm.h
  118. monitor_wrap.c
  119. monitor_wrap.h
  120. mpaux.c
  121. mpaux.h
  122. msg.c
  123. msg.h
  124. myproposal.h
  125. nchan.c
  126. nchan.ms
  127. nchan2.ms
  128. openbsd-compat/
  129. packet.c
  130. packet.h
  131. pathnames.h
  132. radix.c
  133. radix.h
  134. readconf.c
  135. readconf.h
  136. readpass.c
  137. readpass.h
  138. regress/
  139. rijndael.c
  140. rijndael.h
  141. rsa.c
  142. rsa.h
  143. scard-opensc.c
  144. scard.c
  145. scard.h
  146. scard/
  147. scp.1
  148. scp.c
  149. servconf.c
  150. servconf.h
  151. serverloop.c
  152. serverloop.h
  153. session.c
  154. session.h
  155. sftp-client.c
  156. sftp-client.h
  157. sftp-common.c
  158. sftp-common.h
  159. sftp-glob.c
  160. sftp-glob.h
  161. sftp-int.c
  162. sftp-int.h
  163. sftp-server.8
  164. sftp-server.c
  165. sftp.1
  166. sftp.c
  167. sftp.h
  168. ssh-add.1
  169. ssh-add.c
  170. ssh-agent.1
  171. ssh-agent.c
  172. ssh-dss.c
  173. ssh-dss.h
  174. ssh-keygen.1
  175. ssh-keygen.c
  176. ssh-keyscan.1
  177. ssh-keyscan.c
  178. ssh-keysign.8
  179. ssh-keysign.c
  180. ssh-rand-helper.8
  181. ssh-rand-helper.c
  182. ssh-rsa.c
  183. ssh-rsa.h
  184. ssh.1
  185. ssh.c
  186. ssh.h
  187. ssh1.h
  188. ssh2.h
  189. ssh_config
  190. ssh_config.5
  191. ssh_prng_cmds.in
  192. sshconnect.c
  193. sshconnect.h
  194. sshconnect1.c
  195. sshconnect2.c
  196. sshd.8
  197. sshd.c
  198. sshd_config
  199. sshd_config.5
  200. sshlogin.c
  201. sshlogin.h
  202. sshpty.c
  203. sshpty.h
  204. sshtty.c
  205. sshtty.h
  206. tildexpand.c
  207. tildexpand.h
  208. ttymodes.c
  209. ttymodes.h
  210. uidswap.c
  211. uidswap.h
  212. uuencode.c
  213. uuencode.h
  214. version.h
  215. xmalloc.c
  216. xmalloc.h