Jump to content
Not connected, Your IP: 35.168.62.171
bumbleb33

List of ECDSA key fingerprints for SSH tunnel connections

Recommended Posts

Hi,

 

Like it says in the documentation, and as is usual, upon the first connection to a ssh server to open a ssh tunnel, the authenticity via the ECDSA key fingerprint is stated. The documentation says to just accept it. But this is dangerous as it allows any intermediate to open a MITM attack.

 

So please compile a list of all servers (with their IPs) and their fingerprints so we can match them on the first connection.

 

Thanks!

Share this post


Link to post

The documentation says to just accept it. But this is dangerous as it allows any intermediate to open a MITM attack.

 

Not really.

Both SSL/SSH tunnels are there for the traffic pattern and not for any additional security.

An attacker with an SSL/SSH MITM will not be able to decrypt your OpenVPN encryption.


Occasional moderator, sometimes BOFH. Opinions are my own, except when my wife disagrees.

Share this post


Link to post

 

The documentation says to just accept it. But this is dangerous as it allows any intermediate to open a MITM attack.

 

Not really.

Both SSL/SSH tunnels are there for the traffic pattern and not for any additional security.

An attacker with an SSL/SSH MITM will not be able to decrypt your OpenVPN encryption.

Yes you're right, I figured that too after posting my request.

Before I posted, I thought that AirVPN also supports ssh tunneling or opening a SOCKS server via ssh -D instead of just being an intermediate via port forwarding for the openvpn client.

 

ssh SOCKS server support would be a cool feature, any chance airvpn might add that?

Share this post


Link to post

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
  • Security Check
    Play CAPTCHA Audio
    Refresh Image

×
×
  • Create New...