Markus Friedl wrote:
> On Thu, Aug 02, 2001 at 11:00:48AM +0300, Atro Tossavainen wrote:
>> David Knight French wrote:
>>
>>> I would highly recommend that you go to version 2.4 or 3.0 instead of
>>> 1.2.31, which has a widely publicized security hole. OpenSSH up to
>>> v2.3.0 also has this vulnerability,
>>
>> Please elaborate which vulnerability it is exactly that you mean. URLs
>> to supporting documentation will be fine.
>
> he's probably talking about
> http://razor.bindview.com/publish/advisories/adv_ssh1crc.html
Which also includes a fix for the problem.
Of course, not all people read Bugtraq or patch their systems.
--
Atro Tossavainen (Mr.) / The Institute of Biotechnology at
Systems Analyst, Techno-Amish & / the University of Helsinki, Finland,
+358-9-19158939 UNIX Dinosaur / employs me, but my opinions are my own.
< URL : http : / / www . iki . fi / atro . tossavainen / >
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
