Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Penetration Testing: Re: How to decrypt a connection SSH v2?

Re: How to decrypt a connection SSH v2?

From: Paul Melson <pmelson_at_gmail.com>
Date: Thu, 10 Jul 2008 00:00:47 -0400

On Wed, Jul 9, 2008 at 10:05 PM, Ulises2k <ulises2k_at_gmail.com> wrote:
> Hi,
> How to decrypt a connection SSH v2?
>
> I have the private and public keys.
>
> I have all sesion sniffed.

I'm afraid that's not enough. SSH implements forward secrecy [1],
which means that the server uses temporary (or ephemeral) keys to
encrypt the session traffic. Having the the private key doesn't give
you the ability to reverse the ephemeral keys and actually decrypt
session data.

PaulM

[1] http://en.wikipedia.org/wiki/Perfect_forward_secrecy

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Top 5 Common Mistakes in
Securing Web Applications
Get 45 Min Video and PPT Slides

www.cenzic.com/landing/securityfocus/hackinar
------------------------------------------------------------------------
Received on Jul 09 2008

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos