Is ssh not safe?

Jason Costomiris jcostom at jasons.org
Sat Jul 24 18:43:22 UTC 2004


On Jul 24, 2004, at 2:04 PM, Edwin Dicker wrote:

> I think SSH is safe enough with its encryption.( Of course everything 
> can
> eventually be cracked )

The problem with your statement is that there's not a single key in use 
all the time.  Certainly an individual key can be broken given enough 
time to brute force it.  Of course, by the time the would-be attacker 
has done that, your session has most likely been closed for days, and 
even still, either end of the connection can request re-keying of the 
session key periodically.





More information about the fedora-list mailing list