According to http://www.openssh.com/txt/release-4.4 (the "Security bugs resolved in this release" section), there is a bug that could lead to remote code execution. The quick fix is to disable GSSAPI. Do we need GSSAPI enabled in our ssh setup?
-- Michael Olson -- FSF Associate Member #652 -- http://www.mwolson.org/ Interests: Emacs Lisp, text markup, protocols -- Jabber: mwolson_at_hcoop.net /` |\ | | | Projects: Emacs, Muse, ERC, EMMS, Planner, ErBot, DVC |_] | \| |_| Reclaim your digital rights by eliminating DRM. See http://www.defectivebydesign.org/what_is_drm for details.
pgpIyXDtT1B7c.pgp
Description: PGP signature
_______________________________________________ HCoop-SysAdmin mailing list [email protected] http://hcoop.net/cgi-bin/mailman/listinfo/hcoop-sysadmin
