Chang [linuxism] babbled on about: 2> what's that ssh1 crc bug? > Can the bug be removed by patches or openssh upgrade? > > > An associate's home NAT gateway linux box was hacked by what I am > > guessing was the ssh1 crc bug (ssh1 was the only exposed service). > > machine looks to have been compromised on Nov 2nd at 1:15pm PST, I > > won't know for certain until I obtain his hard disk later today, and > > provided that /var logging is recoverable. This machine was running > > redhat 6.2, reasonably patched except for the fact that he was still > > running ssh1.
an upgrade of openssh should fix it. check their site to be sure.. -- Douglas J Hunley (doug at hunley.homeip.net) - Linux User #174778 Admin: http://linux.nf Admin: http://hunley.homeip.net "Imagine if every Thursday your shoes exploded if you tied them the usual way. This happens to us all the time with computers, and nobody thinks of complaining." -- Jeff Raskin, interviewed in Doctor Dobb's Journal _______________________________________________ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
