• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Help me understand ssh...

cleverhandle

cleverhandle

Diamond Member
So now that I've finally got DSL (w00t!), I'll be setting up some simple services on one machine, using openssh for remote adminstration. I understand how to use it, but I was hoping someone could give me a little background on how it works under the hood, just because I like to understand these kinds of things. Specifically, how is it that a client can securely transfer a password to a server without any prior knowledge of encyption keys? It seems to me like the first connection has to be untrusted and vulnerable to man-in-the-middle attacks (not that anyone would bother with me... 🙂 ), since both machines do not yet have knowledge of both keys. Any good articles or nutshell descriptions of this? I searched a bit and found this article from IBM, which does a nice job of explaining how to use RSA/DSA keys for passwordless authentication, but I still don't really understand how the initial handshaking between hosts works in the first place.
 
Specifically, how is it that a client can securely transfer a password to a server without any prior knowledge of encyption keys?
Click to expand...

It doesn't. The public key is known before transmitting the password.
 
Hmm... OK, so it works something like this, then? The client knows the server's public (encryption) key, uses it to encrypt the password, which is decrypted by the server's private key. And presumably, the client sends it's own public key (encrypted again with the server pubkey?) along with the password, so that the server knows how to encrypt the data it sends back to the client? So as long as the local user checks the server's public key fingerprint against a reference (web page, email, letter, etc.), it's all good?
 
Originally posted by: cleverhandle
Hmm... OK, so it works something like this, then? The client knows the server's public (encryption) key, uses it to encrypt the password, which is decrypted by the server's private key. And presumably, the client sends it's own public key (encrypted again with the server pubkey?) along with the password, so that the server knows how to encrypt the data it sends back to the client? So as long as the local user checks the server's public key fingerprint against a reference (web page, email, letter, etc.), it's all good?
Click to expand...

indeedy. i'm not sure if the public key is encrypted or not, it doesn't need to be since it's only used for encrypting, but the rest of what you typed I belive is correct.
 
openssh.com probably has some good information on it. If I was thinking better Id try to write a little something.
 
Originally posted by: n0cmonkey
openssh.com probably has some good information on it.
Click to expand...
Indeed, that would seem logical, but I couldn't find anything. Lots of more advanced discussion of features and algorithms, but nothing I saw that just layed out the basics of how the authentication works.

 
Originally posted by: cleverhandle
Originally posted by: n0cmonkey
openssh.com probably has some good information on it.
Click to expand...
Indeed, that would seem logical, but I couldn't find anything. Lots of more advanced discussion of features and algorithms, but nothing I saw that just layed out the basics of how the authentication works.
Click to expand...

http://www.openssh.com/txt/draft-ietf-secsh-architecture-12.txt

😉
Probably a little rougher than you wanted. Ill keep my eyes open.
 
one thing,

public key cryptography is only used for authentication and then sending a third symetric key. That third key is used for all further traffic. The asymetric keys in PKI take a lot of system resources to work with, so they're only used for the first part. A symetric key does not take anywhere near as much, however if someone were able to get it they would be able to decrypt the whole conversation. Thats why you use PKI to do the initial setup and transfer of the symetric key.

You're right in that the first/initial contact is vulnerable to a man-in-the-middle attack. People who are really serious about it don't even let the client just grab the key, they burn it to a little CD and carry it around with them. If the public key of the server you're connecting to ever changes your client will flip out and make sure you're ok with that before proceding. (at least putty and the openssh client do).

Here's a link you should like (best site ever):
http://www.howstuffworks.com/encryption.htm

bart
 
You must log in or register to reply here.
Back
Top