In making some recommendations to a client regarding the security of some of
their configurations, I'm finding some systems using SSH1 and others using
SSH2. None of the 1.2.27 versions I've found on the client site were
compiled with RSAREF, which was a recently reported vulnerability...but I'm
still wondering what I should provide the client in regards to a discussion
of the two protocols.
Does anybody have any opinions regarding SSH1 vs. SSH2, or perhaps know of
some white papers on the subject available on the net? I can point the
client to a URL and let them do their own research, possibly, or paraphrase
what I discover in professional forums such as this one.
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
