[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Woody ssh exploit

To solve this issue with Woody I just leave the line for the 
stable security updates in my sources file. I get the security 
updates before they are in Woody. Is there any reason this would 
not be a good idea? 

Random numbers are to computers what freewill is to human beings 

--Robert A. Heinlein

---------- Original Message ----------------------------------
From: mistrm@gtemail.net
Date: Thu, 22 Feb 2001 16:10:18 -0500 (EST)

>> >  I installed ssh 2.3.0p1-1.11 from unstable on my woody 
>> machines at home.
>> > It works great.
>> Yes, but 2.4.0 is current.
>NO, SSH 2.4.0 is SSH from SSH Communications.  It is a commerical 

release.  OpenSSH and SSH are two different products - two 

completely different implementations of SSH.
>This last post helps to illustrate my point about properly naming 

these.  It would help to eliminate a lot of confusion.
>SSH is not Free Software.  READ the licensing!  Yes, there is no 

charge if you run it on Linux or any of the BSDs.  However if you 

using it in a mixed environment (you have non Linux/BSD machines) 

you could possibly be violating the license.  The license is very 

>OpenSSH is Free Software (BSD style license).  You can do 

whatever you want with it.
>I really hope the packages get a name change.  OpenSSH should be 

called openssh and SSH from SSH Communications labeled as ssh.  

The current stable release of OpenSSH for Linux is 2.5.1p1.  You 

can get it at www.openssh.com
>Get free personalized email from GTE at http://www.gtemail.net
>To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
>with a subject of "unsubscribe". Trouble? Contact 


Reply to: