On Tue, Apr 08, 2014 at 02:14:45PM -0700, Paul Heinlein wrote: > On Tue, 8 Apr 2014, Michael Rasmussen wrote: > > RHEL 5 using 0.9.8, but RHEL (and CentOS) 6 use a vulnerable > version, though a patch has been released. For the few of us using Arch Linux, it's pacman -S openssl or pacman -Syu time. I see that my system included a g version of openssl in the exchange.
While I see the vulnerability can be exploited in a web browser query, does anyone know of an ssh based exploit? -- Michael Rasmussen, Portland Oregon Be Appropriate && Follow Your Curiosity It's easy to get on the internet and forget you have a life _______________________________________________ PLUG mailing list PLUG@lists.pdxlinux.org http://lists.pdxlinux.org/mailman/listinfo/plug