nrpe encryption SHA, ADH,

Tharanga tharanga at roomsnet.com
Wed Oct 17 05:51:32 CEST 2007


Hi All,

Accoring to the nrpe documentation NRPE  has the option for Encrypting
Network traffic using
SSL/TLS from openssl. The Encryption is done using a set encryption routine
of
AES-256 Bit Encryption using SHA and Anon-DH. This encryptsall traffic using
the NRPE sockets from the client to the server.

when i see the code i can see only the cipher list (ADH). so how this AES
and SHA invlove ?
ADH is the key agreement protocol. but it uses ADH and server or client will
not be autheticated. breaking the ADH cipher is not computaitonally feasible
at the moment.and you need to find the fisr packet (Man in the Middle
attack) , so its not practical. then how this AES encryption , and SHA work
in the protocol.


many thanks,



-------------------------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc.
Still grepping through log files to find problems?  Stop.
Now Search log events and configuration files using AJAX and a browser.
Download your FREE copy of Splunk now >> http://get.splunk.com/




More information about the Developers mailing list