Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Penetration Testing: Re: How to decrypt a connection SSH v2?

Re: How to decrypt a connection SSH v2?

From: Ulises2k <ulises2k_at_gmail.com>
Date: Thu, 10 Jul 2008 11:14:10 -0300

But I have all session sniffed.(tcpdump)
No only private and public keys.
Can I decrypt the session? 

--
Ulises U. Cuñé
Web: http://www.ulises2k.com.ar
On Thu, Jul 10, 2008 at 01:00, Paul Melson <pmelson_at_gmail.com> wrote:
> On Wed, Jul 9, 2008 at 10:05 PM, Ulises2k <ulises2k_at_gmail.com> wrote:
>> Hi,
>> How to decrypt a connection SSH v2?
>>
>> I have the private and public keys.
>>
>> I have all sesion sniffed.
>
> I'm afraid that's not enough.  SSH implements forward secrecy [1],
> which means that the server uses temporary (or ephemeral) keys to
> encrypt the session traffic.  Having the the private key doesn't give
> you the ability to reverse the ephemeral keys and actually decrypt
> session data.
>
> PaulM
>
> [1] http://en.wikipedia.org/wiki/Perfect_forward_secrecy
>
------------------------------------------------------------------------
This list is sponsored by: Cenzic
Top 5 Common Mistakes in 
Securing Web Applications
Get 45 Min Video and PPT Slides
www.cenzic.com/landing/securityfocus/hackinar
------------------------------------------------------------------------
Received on Jul 10 2008
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos