Collaborate Disseminate
I have an HP Proliant server. I have been using it for several years. Sometimes I used its iLO web interface via WAN (I have forwared required ports) completely ignoring all warnings from my browser about the server certificate being inval… Continue reading Possible MITM attack on remote server administration
Say that I have a program that needs to communicate with my own server.
I use TLS to secure the connection, however the program is running within a network, which sends all TLS traffic through a TLS inspection proxy and the computer where … Continue reading Prevent TLS inspection by using TLS nested inside of TLS
This excellent question introduces "TOFU" (trust on first use – e.g. SSH storing fingerprints) and "TBFU" (trust before first use, e.g. PKI Certs, WPA pre-shared-keys).
Can MitM attack be avoided without using a 3rd par… Continue reading Can a secure MitM-free channel be established between two peer "strangers" in the presence of an active adversary?
I downloaded Whonix xfce-16.0.3.1 QEMU/KVM checked the integrity sha256 and installed it in Devian ASCII. Changed user and passwd. When starting the Gateway only an SSH connection takes place to the ip 146.57.248.255 (umn.edu) from local i… Continue reading Suspicious Whonix Gateway SSH connection
If a non-compromised device is connected to the internet via open Wi-Fi, anyone can view the traffic.
But if all the connections to the servers use a reasonably secure cryptographic protocol (such as a recent version of TLS), is the commun… Continue reading Are TLS v1.3 connections over open Wi-Fi secure?
I have seen a lot of tutorials showing how to MITM a network using various tools. But it usually says that we require a network adapter with monitor mode options.
I own my wifi router and can connect to it using a wired medium too. Can I d… Continue reading How wifi network MITM works?
The following scenario:
We have a HTTP (not HTTPS, so unencrypted) server which contains an open (RSA) public key. The general sharing of the public key should not be a problem since it is the public key. My concerns are more about a MITM … Continue reading Is it secure to share a public (RSA) key over http?
With password authentication you’re basically giving your password to the attacker. At least that is my understanding. What about public key authentication? I hear that a private key never leaves your side, and that it’s not possible to pe… Continue reading What are possible implications of ignoring the ssh host key warning?
RFC 4226 on HOTP (7.1 Authentication Protocol Requirements) says
RP3 – P [the protocol] SHOULD be implemented over a secure channel in order to
protect users’ privacy and avoid replay attacks.
But isn’t the basic idea of HOTP (and TOTP) … Continue reading Does the lack of a secure channel really allow a replay attack to HOTP?
Using agent forwarding comes with a risk, but stored private keys can also abused if the attacker has compromised the remote machine.
In this thread I want to discuss whether agent forwarding is safe to use or should not be used because of… Continue reading SSH Agent Forwarding – What are the best practices and current security issues?