Jay [MOVED HERE] on Nostr: That's great, because you can direct unlimited resources to physically secure the ...
That's great, because you can direct unlimited resources to physically secure the hardware. But what I really want is to physically secure the remote side by making it just as physically costly to obtain the signing keys as well.
So what I'm wondering is if there's any issue with the only two pieces of information on the wire to be a random message to the client and the signed random message to the server in order to establish an ssh connection.
Published at
2025-04-19 17:37:23Event JSON
{
"id": "ab31fdb074cc23f9fe55befb574bb4899b57c0e8417913d5f497fad695360acb",
"pubkey": "7ed7d5c3abf06fa1c00f71f879856769f46ac92354c129b3ed5562506927e200",
"created_at": 1745084243,
"kind": 1,
"tags": [
[
"e",
"27e4c75b8d3408733224e19c43f096521d55ce209ca0cfb4744900c03033063b",
"",
"root"
],
[
"e",
"6d0be99a8b6089041b4a36ddb2ef2b7d2199feca3b47fe7a923014b0614093bb",
"",
"reply"
],
[
"p",
"7ed7d5c3abf06fa1c00f71f879856769f46ac92354c129b3ed5562506927e200"
],
[
"p",
"50f1e4619bac816a6cfcaf613a2d5b501d4635deceaafe21ed917c66e24f6aff"
]
],
"content": "That's great, because you can direct unlimited resources to physically secure the hardware. But what I really want is to physically secure the remote side by making it just as physically costly to obtain the signing keys as well.\n\nSo what I'm wondering is if there's any issue with the only two pieces of information on the wire to be a random message to the client and the signed random message to the server in order to establish an ssh connection.",
"sig": "f1ed3d39b7db372f9092370001023f861978c6566237e7690686bd32b9f891dda19176c432fe7e09cbda28db0c571524a4a6d3c1c9e00a56f7777068e924e2e6"
}
