LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 11-29-2012, 05:48 AM   #1
RaviTezu
Member
 
Registered: Nov 2012
Location: India
Distribution: Fedora, CentOs, RHEL
Posts: 164

Rep: Reputation: 24
How to make sure, it is the genuine system.


Hi LQ folks,

I'd like to explain what i know & then describe the scenario what i'd like to know. Please correct me, if i'm wrong.

Whenever we are connecting(ssh'ing) to a host(Let's name it X) for first time, there appears a prompt to add the host to known hosts.when we say "yes" .. the public key of X is added to the user's known_hosts file(which is residing in /home/username/.ssh/known_hosts).

My Question:
Let's think a user who has connected to X,did the same(add the pub. key to known_hosts).
Now the User built a machine with the same host-name(i.e X) & made the public key of X as public key for this newly built machine.
Made the changes in DNS too(directing the request to newly built system).. so when a user from outside trying to connect to the host X using the url(hostname) will be directed to the new host.
Which should not be the way.

How to detect whether the host you're connecting to,is the real one now???


Thanks,
Ravi

Last edited by RaviTezu; 11-29-2012 at 05:52 AM.
 
Old 11-29-2012, 05:54 AM   #2
linosaurusroot
Member
 
Registered: Oct 2012
Distribution: OpenSuSE,RHEL,Fedora,OpenBSD
Posts: 979
Blog Entries: 2

Rep: Reputation: 235Reputation: 235Reputation: 235
Quote:
made the public key of X as public key for this newly built machine
That's only possible if he also obtains the private host key from X which he shouldn't without root access.
 
Old 11-29-2012, 05:58 AM   #3
RaviTezu
Member
 
Registered: Nov 2012
Location: India
Distribution: Fedora, CentOs, RHEL
Posts: 164

Original Poster
Rep: Reputation: 24
Hi linosaurusroot,

What if he got the private key too?

---------------------------------------------------------------------------------------------------------
Thanks for the reply
 
Old 11-29-2012, 06:07 AM   #4
linosaurusroot
Member
 
Registered: Oct 2012
Distribution: OpenSuSE,RHEL,Fedora,OpenBSD
Posts: 979
Blog Entries: 2

Rep: Reputation: 235Reputation: 235Reputation: 235
There is http://blog.exanames.com/2009/06/one...nssec-ssh.html

But after a bad guy gets root on your server then even when your users do connect to the genuine server the wrong thing happens.
 
Old 11-29-2012, 06:33 AM   #5
RaviTezu
Member
 
Registered: Nov 2012
Location: India
Distribution: Fedora, CentOs, RHEL
Posts: 164

Original Poster
Rep: Reputation: 24
Any other options?
 
Old 11-29-2012, 06:45 AM   #6
linosaurusroot
Member
 
Registered: Oct 2012
Distribution: OpenSuSE,RHEL,Fedora,OpenBSD
Posts: 979
Blog Entries: 2

Rep: Reputation: 235Reputation: 235Reputation: 235
http://en.wikipedia.org/wiki/Hardware_security_module
 
Old 11-29-2012, 06:55 AM   #7
RaviTezu
Member
 
Registered: Nov 2012
Location: India
Distribution: Fedora, CentOs, RHEL
Posts: 164

Original Poster
Rep: Reputation: 24
I guess all these are attack prevention measures.

Is there any way, to find that..we are directed to the wrong host?
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Reiserfs Journal warning when booting system after grub, is it make system slow ??? b-RAM Linux - Server 4 07-20-2009 09:07 PM
a genuine question linuxpassion Linux - Newbie 1 02-18-2008 04:38 AM
make a .img file for custom liveCD, dd?? (Also, how to make your system very small) 1veedo Linux - Newbie 6 05-07-2006 06:52 PM
Genuine AMD xowl Linux - Hardware 4 03-03-2005 03:42 AM
'make' and 'make install' commands dont work on my system? ginda Linux - Newbie 9 04-18-2004 12:17 PM


All times are GMT -5. The time now is 02:51 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration