[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Upcoming OpenSSH vulnerability
Maybe yes, maybe no.
Note I've not answered your question either way. So what are you going to
do? Perhaps follow the instructions I sent?
> On Mon, Jun 24, 2002 at 03:00:10PM -0600, Theo de Raadt wrote:
> > There is an upcoming OpenSSH vulnerability that we're working on with
> > ISS. Details will be published early next week.
> > However, I can say that when OpenSSH's sshd(8) is running with priv
> > seperation, the bug cannot be exploited.
> Does it means that this bug can be exploited when sshd is running with
> "PermitRootLogin yes" ?