In message <[EMAIL PROTECTED]>
, "Andersson, Mats" writes:
>
> Hi,
>
> Since scp uses the ordinary ssh-client to establish a shell, enabling
> encryption type 'none' for users to do scp is like enabling rsh. However
> if your users use RSA-authentication it is not too bad to do this since
> noone can see anything critical going across the line. About hijacking the
> connection, that's a harder issue, since the connection is not encrypted
> there is nothing protecting you from tcp-hijacking (after the
> authentication has been done) so that is your only concern in this
> scenario (given you use RSA authentication).
Yes, the connection could be hijacked. While the files being copied are not
themselves a concern -- you can always do md5 checksums before and after -- an
attacker who hijacked the connection could overwrite *other* files on the
target machine -- say, .profile -- which would in turn lead to a substantially
increased risk of machine compromise...
--Steve Bellovin
