README: Clarify slightly what an attacker may be able to do

There are certain circumstances where an attacker might not be able to proxy your authentication to the remote server, though there are still other avenues of attack open. So clarify that the attacker may be able to go that far, rather than intimating that he always can.
0cjs · Jan 12, 2017 · e085de6 · e085de6
1 parent 655a44f
commit e085de6
Showing 1 changed file with 4 additions and 3 deletions.
diff --git a/README.md b/README.md
@@ -29,9 +29,10 @@ corresponding private key.
 The problem is, of course, an attacker can send you any public key he
 likes. If you don't have your own copy of the public key you expect,
 or at least its fingerprint, and you accept that public key, you may
-well be accepting an attacker's public key. He can now proxy your
-connection on to the real host, reading and modifying all your data at
-will.
+well be accepting an attacker's public key. There are now several
+avenues of attack available to him, potentially extending as far as
+proxying your connection on to the real host, reading and modifying
+all your data at will.
 
 OpenSSH has a configuration directive called `StrictHostKeyChecking`
 which, when set to `yes` will assert that for the host to which you