Greg Bolshaw wrote:
Nessus *does* check the version string, but only to provide it for your
information. It will try to exploit all known bugs in sshd. In my
opinion, this is the only way to be certain you're not vulnerable.
Search for ssh at http://cgi.nessus.org/plugins/search.html to see a
list
On Tue, 2004-01-13 at 20:11, gabriel wrote:
i'm working on a linux box here @work that's running a little-known distro
called neos and i'm trying to determine if the ssh daemon that's running on
it is free of all the scary bugs that have appeared over the last year.
Probably best to install
On Wed, 2004-01-14 at 11:49, Greg Bolshaw wrote:
On Tue, 2004-01-13 at 20:11, gabriel wrote:
i'm working on a linux box here @work that's running a little-known distro
called neos and i'm trying to determine if the ssh daemon that's running on
it is free of all the scary bugs that have
Nessus is a nice util for security testing, maybe the best arround.
But if you just wanna know if that sshd is vulnerable do a ssh -V and look for
the result, the secure version is 3.7.1p2.
Also there is a list for gentoo-servers if you are interested.
On Tue, 2004-01-13 at 20:11, gabriel
On Wed, 2004-01-14 at 11:08, Guy Van Sanden wrote:
On Wed, 2004-01-14 at 11:49, Greg Bolshaw wrote:
On Tue, 2004-01-13 at 20:11, gabriel wrote:
i'm working on a linux box here @work that's running a little-known distro
called neos and i'm trying to determine if the ssh daemon that's
i'm working on a linux box here @work that's running a little-known distro
called neos and i'm trying to determine if the ssh daemon that's running on
it is free of all the scary bugs that have appeared over the last year.
typing sshd -v gives me this:
# sshd -v
sshd: illegal option -- v
Check the Openssh web site.
From: gabriel [EMAIL PROTECTED]
Date: 2004/01/13 Tue PM 03:11:36 EST
To: [EMAIL PROTECTED]
Subject: [gentoo-user] how can i tell if a daemon has been patched?
i'm working on a linux box here @work that's running a little-known distro
called neos and i'm