Re: Critical: ssh-nonfree IS exploited
Wichert Akkerman <wichert@wiggy.net> wrote:
[...]
> Anyone who thinks openssh is not more secure needs to compare codebases :)
On the other side, OpenSSH has had its share on exploits and bugs,
too, and BTW afaics (Bug #113513) the version in Debian is still open
to
|-- RHSA-2001:114-05
| 3. Problem description:
|
| If a user lists multiple keys in her .ssh/authorized_keys2 file,
| sshd may in some circumstances not honor the "from" option which
| can be associated with a key, thereby allowing key-based logins
| from hosts which should not be allowed access.
|----------------------
cu andreas
--
Hey, da ist ein Ballonautomat auf der Toilette!
Echelon: sex violence tower XXX Boom human rights Islam Kate Winslet
vim:ls=2:stl=***\ Sing\ a\ song.\ ***
Reply to: