Re: [Nolug] ssh upgrade

From: Mark A. Hershberger <mah_at_everybody.org>
Date: Tue, 16 Sep 2003 19:55:34 -0500
Message-ID: <87y8woz115.fsf_-_@weblog.localhost>

Scott Harney <scotth@scottharney.com> writes:

> I recognize that it looks like rumor mill material until you
> read the full-disclosure list entries.

But that's what I thought sounded like a rumor mill. People saying,
"well, I heard..."

Still, I didn't read farther than the thread pointed to by the
Slashdot post.

A particularly good point is this one:

    every single hp and cisco switch containing this code
    is likely vulnerable

http://lists.netsys.com/pipermail/full-disclosure/2003-September/010146.html

Still, there isn't any word of an exploit. Just a DoS. Which is
still bad, especially if you depend on ssh for remote access.

Mark.
___________________
Nolug mailing list
nolug@nolug.org
Received on 09/16/03

This archive was generated by hypermail 2.2.0 : 12/19/08 EST