Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
gosub100
4 months ago
|
parent
|
context
|
favorite
| on:
Some thoughts on OpenSSH 9.8's PerSourcePenalties ...
Then it would be vulnerable to MITM.
DaSHacka
4 months ago
[–]
How so?
gosub100
4 months ago
|
parent
[–]
You fool a valid sender into thinking you're the recipient, he passes you his one and done key, which you use to login and takeover.
DaSHacka
4 months ago
|
root
|
parent
[–]
You're only passing public keys with WireGuard, its asymmetric not symmetric encryption.
It doesn't matter if an attacker gets your (or the server's) public key.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
