Re: Ssh2-packet still secure?

To: debian-devel@lists.debian.org
Subject: Re: Ssh2-packet still secure?
From: Colin Watson <cjwatson@debian.org>
Date: Wed, 17 Sep 2003 05:16:39 +0100
Message-id: <[🔎] 20030917041639.GC2584@riva.ucam.org>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 20030916220131.GA30963@kalypso.caradhras.net>
References: <000001c37c81$bf99a9d0$0100a8c0@isabella> <[🔎] 20030916220131.GA30963@kalypso.caradhras.net>

On Wed, Sep 17, 2003 at 12:01:31AM +0200, Bas Zoetekouw wrote:
> You wrote:
> > I use ssh2 (2.0.13-7) on my webserver. As far as I can see this
> > packet has not been updated since Sat, 15 Dec 2001 12:43:25 +0000.
> > My question is if this packet is still considered secure and
> > reliable to use after all OpenSSH-bugs, since it's not updated for
> > almost 2 years, or is that because it's considered outdated?
> 
> AFAIK, the ssh2 package was removed ages ago because of it having
> security bugs and it being obsoleted by openssh.  As far as I can see,
> it's not even present in woody any more.

It is still present in woody; you need to look in non-US, though.

I've filed bug #211331 asking for it to be removed from stable too.

-- 
Colin Watson                                  [cjwatson@flatline.org.uk]

Reply to:

References:
- Re: Ssh2-packet still secure?
  - From: Bas Zoetekouw <bas@debian.org>

Prev by Date: Re: ssh: ssh should start earlier
Next by Date: xfree86 4.0.3
Previous by thread: Re: Ssh2-packet still secure?
Next by thread: Bug#211337: ITP: libdata-sorting-perl -- Multi-key sort using function results
Index(es):
- Date
- Thread