<div><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;"><br>In any case, ssh public keys are self-created and are not validated by<br>TTPs. So, the very first time you connect to the server I don't think
<br>you would be able to detect a mitm attack.</blockquote><div><br>unless you knew the key's fingerprint. Otherwise, no, you wouldn't detect it. Until the next time you connected through tor, and you got the real key 8) Ironically you'd think the real was the fake, I guess.
<br></div><br></div><br>