[jira] Updated: (WAGONSSH-12) wagon-ssh is vulnerable to man in the middle attacks

["Brett Porter (JIRA)" <ji...@codehaus.org>]

     [ http://jira.codehaus.org/browse/WAGONSSH-12?page=all ]

Brett Porter updated WAGONSSH-12:
---------------------------------

    Description: 
There is no way to handle known hosts/fingerprints in wagon-ssh.

¡Encryption without knowing who you are talking with has no fun!

i will try to provide a patch

  was:

There is no way to handle known hosts/fingerprints in wagon-ssh.

¡Encryption without knowing who you are talking with has no fun!

i will try to provide a patch

    Fix Version: 1.0-alpha-5

> wagon-ssh is vulnerable to man in the middle attacks
> ----------------------------------------------------
>
>          Key: WAGONSSH-12
>          URL: http://jira.codehaus.org/browse/WAGONSSH-12
>      Project: wagon-ssh
>         Type: Bug
>     Reporter: Juan F. Codagnone
>     Priority: Critical
>      Fix For: 1.0-alpha-5
>  Attachments: WAGON-SSH-12.diff
>
>
> There is no way to handle known hosts/fingerprints in wagon-ssh.
> ¡Encryption without knowing who you are talking with has no fun!
> i will try to provide a patch

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
   http://jira.codehaus.org/secure/Administrators.jspa
-
For more information on JIRA, see:
   http://www.atlassian.com/software/jira


---------------------------------------------------------------------
To unsubscribe, e-mail: wagon-dev-unsubscribe@maven.apache.org
For additional commands, e-mail: wagon-dev-help@maven.apache.org