Re: HEAD's UP: possible 0day SSH exploit in the wild

To: debian-security@lists.debian.org
Subject: Re: HEAD's UP: possible 0day SSH exploit in the wild
From: Bernd Eckenfels <bernd-09@eckenfels.net>
Date: Thu, 9 Jul 2009 01:41:35 +0200 (CEST)
Message-id: <[🔎] 200907082341.n68NfZlP023534@neskaya.eckenfels.net>
In-reply-to: <[🔎] f971bab40907080937v33884e78nce8291d34140f3de@mail.gmail.com>

In article <[🔎] f971bab40907080937v33884e78nce8291d34140f3de@mail.gmail.com> you wrote:
> Is there a way to force keys AND passwd verification?

You know that if its a protocol exploit (which is quite likely) that will
not help you much.  tcpwrapper itself or ipfilter acts quite early in the
protocol stack - that might help.

Besides I dont think you can force both, its only one stage in ssh protocol.
But your login shell could ask for the password via Terminal. Maybe with pam..

Greetings
Bernd

Reply to:

Follow-Ups:
- Re: HEAD's UP: possible 0day SSH exploit in the wild
  - From: Guntram Trebs <gt@trebs.net>

References:
- Re: HEAD's UP: possible 0day SSH exploit in the wild
  - From: Jim Popovitch <jimpop@gmail.com>

Prev by Date: bastille in lenny
Next by Date: Re: HEAD's UP: possible 0day SSH exploit in the wild
Previous by thread: Re: HEAD's UP: possible 0day SSH exploit in the wild
Next by thread: Re: HEAD's UP: possible 0day SSH exploit in the wild
Index(es):
- Date
- Thread