From: Jonathan Lassoff <jlassoff@gmail.com>
To: linux-hams@vger.kernel.org
Subject: Re: SSH and the NONE option
Date: Thu, 14 Jul 2005 09:28:07 -0700 [thread overview]
Message-ID: <407645010507140928bbc8db8@mail.gmail.com> (raw)
In-Reply-To: <20050714152734.GA14641@toontown.erial.nj.us>
On 14/07/05, Bob Snyder <rsnyder@toontown.erial.nj.us> wrote:
> Don't forget that (at least in the US) the rules state you cannot
> obscure the meaning...
>
> Section 97.113 (4) "...messages in codes or ciphers intended to
> obscure the meaning thereof, except as otherwise provided herein..."
> Bob N2KGO
Why not just have a challenge and response design like Andrew Bates
suggested. For example, what if the server sent a challenge string,
and the user concatenated their authentication string to the challenge
and then made an md5 hash of the whole string and sent it for
authentication. The server would then do the same and compare the
strings. It's kind of how APOP and Yahoo! mail work. But, to any
monitoring party, how would they know weather or not the md5 hash is
your password, or a crypted authentication response? I'm not sure what
obscuring the meaning really means. Since the user really means the
md5sum to be sent, is that hiding the underlying authentication
scheme?
Isn't phone and CW communication really obscuring what an operator
means. When speaking over the radio, my brain takes concepts and
expresses them in a crypted fashion called "language". To me, this is
a more complex issue that isn't really explained well enough in
97.113(4). I think that, on a more ethical level, by using crypted
authentication, nothing is really being hidden. It's just overhead
data in the protocol. In which case, isn't AX.25 just crypted OSI
layer 1 and 2 traffic? It's accepted because the standard is readily
available to the public. So why couldn't a challenge and response
authentication scheme that is available to the public be accepted as
well?
Just my two cents.
Jonathan Lassoff (KG6THI)
next prev parent reply other threads:[~2005-07-14 16:28 UTC|newest]
Thread overview: 52+ messages / expand[flat|nested] mbox.gz Atom feed top
2005-07-11 8:21 [PATCH] First cut of PR430 / extended 6pack driver Ralf Baechle DL5RB
2005-07-11 21:59 ` YAPP File Transfer with Linux Bill Vodall WA7NWP
2005-07-11 22:06 ` Curt, WE7U
2005-07-11 22:12 ` Curt, WE7U
2005-07-12 11:42 ` Rodolfo Brasnarof
2005-07-12 14:13 ` Bill Vodall
2005-07-12 14:21 ` Digi-ned output file and logrotate Bill Vodall
2005-07-12 15:24 ` Jim Bayer
2005-07-12 14:56 ` YAPP File Transfer with Linux Bob Nielsen
2005-07-12 14:55 ` Bill Vodall
2005-07-12 15:28 ` Bob Nielsen
2005-07-12 17:05 ` Bill Vodall
2005-07-12 18:07 ` Robert Eliassen
2005-07-12 18:51 ` Jeremy Utley
2005-07-12 19:11 ` Bill Vodall WA7NWP
2005-07-13 7:53 ` Robert Eliassen
2005-07-13 11:03 ` Tomi Manninen
2005-07-13 14:41 ` Chuck Hast
2005-07-13 17:51 ` Dave Platt
2005-07-14 0:19 ` Bob Nielsen
2005-07-12 20:51 ` Michael Taylor
2005-07-12 22:03 ` Bill - WA7NWP
2005-07-12 23:56 ` Chuck Hast
2005-07-12 15:13 ` Robert Eliassen
2005-07-12 15:22 ` SSH and the NONE option Bill Vodall
2005-07-12 16:55 ` Ralf Baechle DL5RB
2005-07-12 17:02 ` Bill Vodall
2005-07-12 18:04 ` Jonathan Lassoff
2005-07-12 19:08 ` Bill Vodall WA7NWP
2005-07-12 20:00 ` Jim Bayer
2005-07-12 20:43 ` Michael Taylor
2005-07-12 20:41 ` Michael Taylor
2005-07-12 21:57 ` Bill - WA7NWP
2005-07-12 22:19 ` Dennis Boone
2005-07-14 7:59 ` Ralf Baechle DL5RB
2005-07-14 9:47 ` Per Crusefalk
2005-07-14 14:53 ` Jim Bayer
2005-07-14 15:12 ` Andrew Bates
2005-07-14 17:01 ` Dave Platt
2005-07-14 15:27 ` Bob Snyder
2005-07-14 16:28 ` Jonathan Lassoff [this message]
2005-07-14 19:02 ` Bob Snyder
2005-07-14 19:28 ` Curt, WE7U
2005-07-14 20:43 ` Bob Snyder
2005-07-30 1:31 ` SSH and the NONE option - more Bill - WA7NWP
2005-07-30 8:19 ` Robert Snyder
2005-08-01 11:34 ` Ralf Baechle DL5RB
2005-08-02 13:20 ` Bill Vodall
2005-07-14 19:51 ` SSH and the NONE option Andrew Bates
2005-07-14 16:01 ` Ralf Baechle DL5RB
2005-07-16 9:28 ` Arno Verhoeven - PE1ICQ
2005-07-13 12:39 ` YAPP File Transfer with Linux Rodolfo Brasnarof
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=407645010507140928bbc8db8@mail.gmail.com \
--to=jlassoff@gmail.com \
--cc=linux-hams@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.