On Tue, Nov 21, 2000 at 09:40:01PM -0500, Greg A. Woods wrote:
> > Once again - we're talking about requiring the _client_ to use a
> > priveledged port, not the server. Please comment appropriately.
>
> No, I'm not talking about the client -- I'm talking explicitly about the
> server needing to use a priviledged port in order that the client can
> trust it *BEFORE* a valid host key association has been established.
older ssh-1.2.x versions as well as OpenSSH clients
contain this 'feature' but it was dropped recently.
-markus
