Forum: >>> Magnum BBS <<<

Dark
Log in

Username Password

"hacked" sshd server - can it get my private key if I connect to it?

From Tomasz Chmielewski@21:1/5 to All on Thu Jul 12 19:33:42 2018

Let's assume a sshd server which I was connecting to in the past was
hacked. SSH host key is intact, but the binary was modified by the attacker.

Can this "hacked" sshd server get my private key? I assume it can't, but
I'd be grateful for pointers to a more thorough explanation.

Tomasz Chmielewski
https://lxadm.com

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

From William Unruh@21:1/5 to Tomasz Chmielewski on Thu Jul 12 17:08:09 2018

On 2018-07-12, Tomasz Chmielewski <tch@none.none> wrote:

Let's assume a sshd server which I was connecting to in the past was
hacked. SSH host key is intact, but the binary was modified by the attacker.

Can this "hacked" sshd server get my private key? I assume it can't, but
I'd be grateful for pointers to a more thorough explanation.

It can get your private key if it is stored on the server. It should not be able to if it is stored on your client. If it could then any server could get your private key, and it would be public knowledge.

Tomasz Chmielewski
https://lxadm.com

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

Who's Online
Recent Visitors
- Jasonrx8
  Wed Apr 17 13:08:27 2024
  from Sydney Nsw via SSH
- Bob Worm
  Wed Apr 17 10:35:26 2024
  from Wales, Uk via Telnet
- Bob Worm
  Thu Apr 18 21:44:01 2024
  from Wales, Uk via Telnet
- Bob Worm
  Thu Apr 18 13:24:26 2024
  from Wales, Uk via Telnet

System Info

Sysop:	Keyop
Location:	Huddersfield, West Yorkshire, UK
Users:	292
Nodes:	16 (2 / 14)
Uptime:	206:25:22
Calls:	6,618
Calls today:	2
Files:	12,168
Messages:	5,316,890