Bug#130876: ssh: -5 discloses too much infomation to an attacker, security

Wichert Akkerman writes: > Previously Matthew Vernon wrote: > > retitle 130876 Sending server software version information should be > > optional > > I'm not sure I agree with that: that easily leads to the configurable > version response option that was disc

Bug#130876: ssh: -5 discloses too much infomation to an attacker, security

retitle 130876 Sending server software version information should be optional severity 130876 wishlist quit I'll get back to you in more detail when I have time, but in the mean time - if you want to produce and maintain (since I'm damn sure upstream wouldn't want to know) a patch that creates a c

Bug#130876: ssh: -5 discloses too much infomation to an attacker, security

Wichert Akkerman writes: > Previously Matthew Vernon wrote: > > retitle 130876 Sending server software version information should be optional > > I'm not sure I agree with that: that easily leads to the configurable > version response option that was discussed on ope

Bug#130876: ssh: -5 discloses too much infomation to an attacker, security

retitle 130876 Sending server software version information should be optional severity 130876 wishlist quit I'll get back to you in more detail when I have time, but in the mean time - if you want to produce and maintain (since I'm damn sure upstream wouldn't want to know) a patch that creates a