Commit e080a707 authored by Chris James's avatar Chris James

updated notes

parent 2b0c8f3d
......@@ -158,3 +158,9 @@ In PKI, the private and public key are useful because a) the private key cannot
Therefore, without knowing the servers private key, you can never perform a useful MITM attack on an SSH session. Plus, most times SSH will simply resume a session rather than negotiate a new one. This involves sending the session ID in plain text, but resuming encryption with the pre-determined cypher suite, which is unknown to the attacker, or [M], in this scenario.
Limit IP forwarding to destination server alone instead of Forward all
should restrict to victim domain
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment