With the project: 'Improving OpenSSH's Authentication and PKI', Wiktor Kwapisiewicz (npub1stn…3829) Kwapisiewicz, David Runge & Doron Behar address the issue of initial trust in SSH.
Most SSH users default to the “Trust On First Use” model, which leaves the 1st connection vulnerable to Man in the Middle attacks.
Solving this problem securely but frictionlessly requires a Public Key Infrastructure. The project uses the OpenPGP PKI to authenticate the remote host.
Interview: https://nlnet.nl/project/OpenPGP-OpenSSH/interview.html
#FOSS #NGI0 #NGI
NLnet /
npub19x…kmart
2024-10-28 07:42:32
Author Public Key
npub19xs3a9609d7hn6l65cnah8cwll2a6gqd4hz2dtqanca3dvcfhtkqpkmartSeen on
wss://relay.mostr.pubPublished at
2024-10-28 07:42:32Event JSON
{
"id": "9032a7fdf01ef0644545ed986f03bce8389ff59cab1b763914da2c16f99db2a0",
"pubkey": "29a11e974f2b7d79ebfaa627db9f0effd5dd200dadc4a6ac1d9e3b16b309baec",
"created_at": 1730101352,
"kind": 1,
"tags": [
[
"p",
"82e723f1f779a8fed98b92e428e1254e47a63865533bbad024dc0bc6e9c5bc6f",
"wss://relay.mostr.pub"
],
[
"t",
"foss"
],
[
"t",
"ngi0"
],
[
"t",
"ngi"
],
[
"proxy",
"https://social.nlnet.nl/users/nlnet/statuses/01JB9C27NN22RW7MSCDHZCEJQQ",
"activitypub"
]
],
"content": "With the project: 'Improving OpenSSH's Authentication and PKI', nostr:npub1stnj8u0h0x50akvtjtjz3cf9fer6vwr92vam45pyms9ud6w9h3hspq3829 Kwapisiewicz, David Runge \u0026 Doron Behar address the issue of initial trust in SSH.\nMost SSH users default to the “Trust On First Use” model, which leaves the 1st connection vulnerable to Man in the Middle attacks.\nSolving this problem securely but frictionlessly requires a Public Key Infrastructure. The project uses the OpenPGP PKI to authenticate the remote host.\nInterview: https://nlnet.nl/project/OpenPGP-OpenSSH/interview.html\n#FOSS #NGI0 #NGI",
"sig": "95ad0858ab5680d9d2c962fda3d0486659b67d00e55f019f8d7b0f9dba7ae8c7f99841dfd9c3a725e1314c9cfad811074cab596375fa500352bd965a4ecc993a"
}