On Tue, 8 Apr 2014, Michael Rasmussen wrote:
While I see the vulnerability can be exploited in a web browser query, does anyone know of an ssh based exploit?
SSH is not affected.OpenVPN, when using tls-auth, is not affected, though it's vulnerable in configurations without TLS auth.
Password-based services like smtp/s, msa, imap/s, pop/s, https, and xmpp are all vulnerable.
I don't know yet about Bacula (using x509) and Cfengine. -- Paul Heinlein [email protected] 45°38' N, 122°6' W
_______________________________________________ PLUG mailing list [email protected] http://lists.pdxlinux.org/mailman/listinfo/plug
