Re: SNI-23: SSH - Vulnerability in ssh-agent (fwd)

To: debian-devel@lists.debian.org
Subject: Re: SNI-23: SSH - Vulnerability in ssh-agent (fwd)
From: kaih@khms.westfalen.de (Kai Henningsen)
Date: 21 Jan 1998 19:55:00 +0200
Message-id: <[🔎] 6mJGaMG1w-B@khms.westfalen.de>
In-reply-to: <199801210810.JAA17029@gauss.topsystem.de>
References: <199801210810.JAA17029@gauss.topsystem.de>

meskes@topsystem.de (Michael Meskes)  wrote on 21.01.98 in <199801210810.JAA17029@gauss.topsystem.de>:

> Are we vulnerable?

I think so, unless there's been a new ssh uploaded in the last few days.

> SSH for unix versions 1.2.17 through 1.2.21 are vulnerable if installed
> with default permissions.  Versions of SSH prior to 1.2.17 are subject to
> a similar (but different) attack.

Ours is 1.2.21, unstalled suid root.


MfG Kai


--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-devel-request@lists.debian.org . 
Trouble?  e-mail to templin@bucknell.edu .

Reply to:

Follow-Ups:
- Re: SNI-23: SSH - Vulnerability in ssh-agent (fwd)
  - From: Scott Ellis <storm@gate.net>

Prev by Date: Netscape Communicator to become freeware
Next by Date: Re: bo-unstable 'menu' seems to affect at least xlock programs
Previous by thread: Netscape Communicator to become freeware
Next by thread: Re: SNI-23: SSH - Vulnerability in ssh-agent (fwd)
Index(es):
- Date
- Thread