I was wondering the same thing myself. Why on earth would someone only want
partial encryption? Drop the whole session down an encrypted pipe and forget
about it.
> -----Original Message-----
> From: Aran Cox [mailto:[EMAIL PROTECTED]]
> Sent: Wednesday, January 31, 2001 6:18 AM
> To: Bob Babcock
> Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED]
> Subject: Re: Can SSH be used just for encrypted
> authentication and then
> let the rest of the session be unencrypted ?
>
>
> On Tue, Jan 30, 2001 at 05:53:07PM -0500, Bob Babcock wrote:
> > > Like my the subject states; Can SSH be used just for encrypted
> > > authentication and then let the rest of the session be
> unencrypted?.
> >
> > I'd like to be able to do this too, but it would be easy to
> get in trouble.
> > Say you ssh from machine A to machine B, then from B you
> ssh to machine C.
> > If only the authentication is encrypted, you've just sent your login
> > information for machine C over the A-to-B link unencrypted.
>
> Why wouldn't you want to encrypt the entire session? Are
> your machines
> so slow that it's actually an issue? ssh makes it just as easy to
> encrypt everything, so why mess with a Good Thing?
>
