commit 3ed6640532ea53bc37182262141c9e917a448025
author Ben Lindstrom <mouring@eviladmin.org> Thu Aug 01 01:21:56 2002 +0000
committer Ben Lindstrom <mouring@eviladmin.org> Thu Aug 01 01:21:56 2002 +0000
tree 88ad1d4bbb9cd865c154f24ad12feafd7e302ccd
parent 18d2b5d399a6ee97c65a058c14054fd2da2b891a

   - markus@cvs.openbsd.org 2002/07/24 16:11:18
     [hostfile.c hostfile.h sshconnect.c]
     print out all known keys for a host if we get a unknown host key,
     see discussion at http://marc.theaimsgroup.com/?t=101069210100016&r=1&w=4

     the ssharp mitm tool attacks users in a similar way, so i'd like to
     pointed out again:
        A MITM attack is always possible if the ssh client prints:
        The authenticity of host 'bla' can't be established.
     (protocol version 2 with pubkey authentication allows you to detect
     MITM attacks)

ChangeLog

diff --git a/ChangeLog b/ChangeLog
index d53270d..546671b 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,3 +1,17 @@
+20020731
+ - (bal) OpenBSD CVS Sync
+   - markus@cvs.openbsd.org 2002/07/24 16:11:18
+     [hostfile.c hostfile.h sshconnect.c]
+     print out all known keys for a host if we get a unknown host key,
+     see discussion at http://marc.theaimsgroup.com/?t=101069210100016&r=1&w=4
+
+     the ssharp mitm tool attacks users in a similar way, so i'd like to
+     pointed out again:
+        A MITM attack is always possible if the ssh client prints:
+        The authenticity of host 'bla' can't be established.
+     (protocol version 2 with pubkey authentication allows you to detect
+     MITM attacks)
+
 20020730
  - (bal) [uidswap.c] SCO compile correction by gert@greenie.muc.de
 
@@ -1465,4 +1479,4 @@
  - (stevesk) entropy.c: typo in debug message
  - (djm) ssh-keygen -i needs seeded RNG; report from markus@
 
-$Id: ChangeLog,v 1.2409 2002/07/30 19:32:07 mouring Exp $
+$Id: ChangeLog,v 1.2410 2002/08/01 01:21:56 mouring Exp $