Re: Vulnerability in ssh shipped by kde.debian.net?

To: Wichert Akkerman <wichert@wiggy.net>
Cc: debian-kde@lists.debian.org, rkrusty@debian.org
Subject: Re: Vulnerability in ssh shipped by kde.debian.net?
From: Rainer Dorsch <rainer.dorsch@informatik.uni-stuttgart.de>
Date: Thu, 06 Dec 2001 18:22:43 +0100
Message-id: <[🔎] E16C2EN-0004BR-00@rai21>
Reply-to: rainer.dorsch@informatik.uni-stuttgart.de
In-reply-to: Your message of "Thu, 06 Dec 2001 14:21:42 +0100." <[🔎] 20011206142142.E22028@wiggy.net>

> Previously Rainer Dorsch wrote:
> > Is this a patched version or is it a huge security risk for users of 
> > kde.debian.net?
> 
> Not really, it's only a risk if you have enabled UseLogin manually and
> have local users you don't trust.
> 

kde.debian.net ships verion 2.3.0px of ssh. I think this version does not only 
have the vulnerability fixed by the latest ssh security update.

Rainer.

-- 
Rainer Dorsch
Abt. Rechnerarchitektur  e-mail:rainer.dorsch@informatik.uni-stuttgart.de
Uni Stuttgart            Tel.: +49-711-7816-215 / Fax: +49-711-7816-288
Breitwiesenstr. 20-22    D-70565 Stuttgart
http://www.ra.informatik.uni-stuttgart.de/~rainer/

Reply to:

References:
- Re: Vulnerability in ssh shipped by kde.debian.net?
  - From: Wichert Akkerman <wichert@wiggy.net>

Prev by Date: arts "cpu overload" on standby
Next by Date: Re: euro and konsole
Previous by thread: Re: Vulnerability in ssh shipped by kde.debian.net?
Next by thread: Re: Vulnerability in ssh shipped by kde.debian.net?
Index(es):
- Date
- Thread