Re: Haven't seen this ssh output before

To: debian-user@lists.debian.org
Subject: Re: Haven't seen this ssh output before
From: Jochen Spieker <ml@well-adjusted.de>
Date: Thu, 4 Dec 2014 11:33:45 +0100
Message-id: <[🔎] 20141204103345.GO26345@well-adjusted.de>
Mail-followup-to: debian-user@lists.debian.org
In-reply-to: <[🔎] 3fec1ace9e30ca3b41723bbc1acb24a7@neutralite.org>
References: <87tx1mpx0x.fsf@reader.local.lan> <20141126031051.GA26345@well-adjusted.de> <87tx1lhcmt.fsf@newsguy.com> <87mw7dh8d5.fsf@newsguy.com> <[🔎] 3fec1ace9e30ca3b41723bbc1acb24a7@neutralite.org>

berenger.morel@neutralite.org:
>
> debsecan.
> 
> This is a tool which lists CVE (Common Vulnerabilities and
> Exposures) that the packages you installed contains.
> I think you might get some hints if you make a diff between the old
> (you said you have un-upgraded systems) and the new (the system
> which gaves you problems) systems.

Debsecan is a great tool, but to find out whether a specific upgrade
contains remedy for a specific CVE the easiest way is usually to just
look at the changelog. I would be very surprised if OpenSSH people close
security holes without mentioning that explicitly.


J.
-- 
If I was Mark Chapman I would have shot John Lennon with a water pistol.
[Agree]   [Disagree]
                 <http://www.slowlydownward.com/NODATA/data_enter2.html>

Attachment: signature.asc
Description: Digital signature

Reply to:

Follow-Ups:
- Re: Haven't seen this ssh output before
  - From: berenger.morel@neutralite.org

References:
- Re: Haven't seen this ssh output before
  - From: berenger.morel@neutralite.org

Prev by Date: Re: boot fails on jessie on Acer Travelmate
Next by Date: Test only
Previous by thread: Re: Haven't seen this ssh output before
Next by thread: Re: Haven't seen this ssh output before
Index(es):
- Date
- Thread