On Fri, 19 Apr 2002 09:34:42 +0200 (CEST), [EMAIL PROTECTED] (Richard Menedetter) wrote:
> Hi Samuel! > 18 Apr 2002, "Samuel W. Heywood" <[EMAIL PROTECTED]> wrote: > SH> I need a nice freeware SSH client for Windows that is runnable from > SH> a floppy drive. > SH> Suggestions anyone? > Try putty ... > (small, does not need any registry stuff, runs from one dir) > http://www.chiark.greenend.org.uk/~sgtatham/putty/ It does use the registry; however, there are work-arounds for the problem and they are described in a link on the web page you have indicated. It is possible to run the program from a floppy; however, without using the registry entries you become an easier target for a server-spoofing attack. You can read information about this problem here: http://the.earth.li/~sgtatham/putty/0.52/htmldoc/Chapter2.html#2.5 Getting started with PuTTY I would think that only a highly advanced techno-nerd geek would be capable of carrying out a successful server-spoofing attack. I don't think just an ordinary script kiddie could do the job. People who are capable of doing it would probably be doing it for a very lucrative purpose, as for looking into financial accounts and for doing commercial and industrial and military sabotage and espionage. Also they would probably be wanting to look into messaging systems involved with communicating about secret affairs of state. Since I am not at all involved in any communications of such a nature that snoopy people would pay any money to know about, it is highly unlikely that I should become a target for a server-spoofing attack. Of course there are script-kiddies who would like to crack my passwords so that they could use my email accounts for spamming or for annoying me by impersonating me or for using my name to send viruses and scams and porns to my friends. The script kiddies are probably cracking people's passwords by far less ingenious means than by server-spoofing attacks. In my case, and in considering the non-confidential nature of almost all of my internet communications, I think I probably would not have to worry about a server-spoofing attack. Other kinds of attacks, yes, but server-spoofing attacks, no. I believe I could safely use PuTTY on just a floppy drive without having the special protection against server-spoofing attacks that I would otherwise have if I could make use of the system registry entries. What do you think? BTW, I don't think that SSHDOS confers any special protection from server-spoofing, but I am not certain. Does anyone know about this? Regards, Sam Heywood -- This mail was written by user of The Arachne Browser - http://arachne.cz/
