[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: openssh 3.1 & www.openbsd.org
Currently, the net is being actively scanned for linux server an
running OpenSSH with the CRC-32 remote hole and thus protocol 1
I don't know if the currently running exploits attacks succesfully
OpenBSD servers but the kits are quite efficient for Linux [of
course, those script kiddies are completly lost when their
RedHat/Mandrake scripts doesn't work].
That bug was fixed in OpenBSD 2.8 and up.
And in 2.6 and 2.7, because of the RSA patent, the librairies needed
to run SSH with RSA and protocol 1 support where not included in
the _default_ install.
Funny I guess.
Hugo Villeneuve <firstname.lastname@example.org>