[vox] password stolen at linuxworld
Samuel Merritt
vox@lists.lugod.org
Mon, 11 Aug 2003 10:20:49 -0700 (PDT)
Micah J. Cowan said:
> On Sun, Aug 10, 2003 at 04:26:57AM -0700, Ryan Castellucci wrote:
>> I suspect that my password was either sholder surfed (unlikely, it'd
>> be hard to memorize....) or someone was runnning man-in-the-middle
>> attacks, and forced an SSHv1 session to prevent a warning, simply
>> prompting for a new key.
>
> How would this be a vulnerability? I know that SSHv1 had some security
> flaws, but the only ones I remember reading about were pretty tough to
> successfully exploit.
Check out ettercap at <http://ettercap.sourceforge.net/>. It uses ARP
spoofing to do man-in-the-middle attacks and can read all the data from
an SSH1 session. It's only a ./configure; make; make install away for
anyone.
--
No PGP signature because I'm far from home and sending via webmail.