diff options
author | Ben Lindstrom <mouring@eviladmin.org> | 2002-08-01 01:21:56 +0000 |
---|---|---|
committer | Ben Lindstrom <mouring@eviladmin.org> | 2002-08-01 01:21:56 +0000 |
commit | 3ed6640532ea53bc37182262141c9e917a448025 (patch) | |
tree | 88ad1d4bbb9cd865c154f24ad12feafd7e302ccd /hostfile.h | |
parent | 18d2b5d399a6ee97c65a058c14054fd2da2b891a (diff) |
- markus@cvs.openbsd.org 2002/07/24 16:11:18
[hostfile.c hostfile.h sshconnect.c]
print out all known keys for a host if we get a unknown host key,
see discussion at http://marc.theaimsgroup.com/?t=101069210100016&r=1&w=4
the ssharp mitm tool attacks users in a similar way, so i'd like to
pointed out again:
A MITM attack is always possible if the ssh client prints:
The authenticity of host 'bla' can't be established.
(protocol version 2 with pubkey authentication allows you to detect
MITM attacks)
Diffstat (limited to 'hostfile.h')
-rw-r--r-- | hostfile.h | 6 |
1 files changed, 4 insertions, 2 deletions
diff --git a/hostfile.h b/hostfile.h index 0244fdb53..063732421 100644 --- a/hostfile.h +++ b/hostfile.h | |||
@@ -1,4 +1,4 @@ | |||
1 | /* $OpenBSD: hostfile.h,v 1.10 2001/12/18 10:04:21 jakob Exp $ */ | 1 | /* $OpenBSD: hostfile.h,v 1.11 2002/07/24 16:11:18 markus Exp $ */ |
2 | 2 | ||
3 | /* | 3 | /* |
4 | * Author: Tatu Ylonen <ylo@cs.hut.fi> | 4 | * Author: Tatu Ylonen <ylo@cs.hut.fi> |
@@ -15,12 +15,14 @@ | |||
15 | #define HOSTFILE_H | 15 | #define HOSTFILE_H |
16 | 16 | ||
17 | typedef enum { | 17 | typedef enum { |
18 | HOST_OK, HOST_NEW, HOST_CHANGED | 18 | HOST_OK, HOST_NEW, HOST_CHANGED, HOST_FOUND, |
19 | } HostStatus; | 19 | } HostStatus; |
20 | 20 | ||
21 | int hostfile_read_key(char **, u_int *, Key *); | 21 | int hostfile_read_key(char **, u_int *, Key *); |
22 | HostStatus | 22 | HostStatus |
23 | check_host_in_hostfile(const char *, const char *, Key *, Key *, int *); | 23 | check_host_in_hostfile(const char *, const char *, Key *, Key *, int *); |
24 | int add_host_to_hostfile(const char *, const char *, Key *); | 24 | int add_host_to_hostfile(const char *, const char *, Key *); |
25 | int | ||
26 | lookup_key_in_hostfile_by_type(const char *, const char *, int , Key *, int *); | ||
25 | 27 | ||
26 | #endif | 28 | #endif |