On Mon, Mar 22, 2004 at 05:47:34PM +0545, [EMAIL PROTECTED] wrote: > i have red-hat 9 server running ssh server as followoing > > openssh-3.5p1-11 ... > But nessus reported as "you are running a version of OpenSSH which is > older than 3.7.1"
This is a false alarm -- the release you have installed addresses the buffer manipulation vulnerabilities that OpenSSH 3.7.1 fixes. The report from the plugin should have mentioned this. Alternatively, you can check with <https://rhn.redhat.com/errata/RHSA-2003-279.html>. George -- [EMAIL PROTECTED]
pgp00000.pgp
Description: PGP signature
_______________________________________________ Nessus mailing list [EMAIL PROTECTED] http://mail.nessus.org/mailman/listinfo/nessus
