[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Bug#130876: Very definitely a bug, security

On Sat, Jan 26, 2002 at 05:00:52AM +0000, Lazarus Long wrote:
> Post your root password and IP address if you think obscurity is
> irrelevant.  (You are twisting a comment about *source* being available
> for peer review in the crypto community, not about site-specifics being
> open to all.)

Apples to oranges. Passwords are successfully obscure because there
are lots of them. There are not nearly enough seperate flavors of ssh
to help obscurity. Meanwhile, having the Debian string in the ssh
identification can help make tracking down issues relating to a
particular ssh package easier.

By the way, my IP is

I disagree that this is a grave bug in any way. Luckily, this bug
isn't keeping other ssh changes out of testing.

Reply to: