90 likes | 201 Views
Attack on SSHv1 using dsniff. By Oleg Kolesnikov ok@cc.gatech.edu. Spoofing DNS. Running MITM daemon. User Establishes a Connection. DNS is Spoofed. User is presented with a forged public key. User Enters Password. Attacker gains Full Access to Data and Passwords.
E N D
Attack on SSHv1 using dsniff By Oleg Kolesnikov ok@cc.gatech.edu
Attacker gains Full Access to Data and Passwords Decrypted Login / password Attacker can type in commands and hijack connection