On Wed, 26 Jun 2002, Paul Baker wrote: > I'm curious what recourse Debian is planning to take now? Perhaps > removing the buggy OpenSSH 3.3 packages off of security.debian.org so > people don't upgrade to it since it's not at all necessary and it will > only cause problems like screwing up compression and pam.
Even worse, on 2.0.x kernels "PrivilegeSeparation" doesn't work, rendinging sshd useless for interactive sessions or make it vurneble is you disable it. [RicV] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
