On Wed, 2002-06-26 at 07:05, David Douthitt wrote: > On Mon, Jun 24, 2002 at 03:14:39PM -0700, Mike Noyes wrote: > > > There is a problem with OpenSSH. > > > > [Fwd: [SECURITY] [DSA-134-1] OpenSSH remote vulnerability] > > Theo de Raadt announced that the OpenBSD team is working with ISS > > on a remote exploit for OpenSSH (a free implementation of the > > Secure SHell protocol). They are refusing to provide any details on > > the vulnerability but instead are advising everyone to upgrade to > > the latest release, version 3.3. > > Sounds like the bug isn't "fixed" but a work-around exists...
David, You're correct. There are a list of recent security advisories on this at: http://www.linuxsecurity.com/advisories/index.html NetSecurity has an in-depth article on this vulnerability. http://www.net-security.org/article.php?id=138 -- Mike Noyes <[EMAIL PROTECTED]> http://sourceforge.net/users/mhnoyes/ http://leaf-project.org/ ------------------------------------------------------- This sf.net email is sponsored by: Jabber Inc. Don't miss the IM event of the season | Special offer for OSDN members! JabberConf 2002, Aug. 20-22, Keystone, CO http://www.jabberconf.com/osdn _______________________________________________ Leaf-devel mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-devel
