On Thu, Jan 14, 2016 at 8:20 AM, Michael H wrote:
> Probably worth a read...
> http://www.openssh.com/txt/release-7.1p2
For the sake of conversation...
Reading the Qualys security advisory is interesting as well, and I
tend to think the vulnerability is not severe for a number of reasons:
https:
> On Jan 15, 2016, at 10:31 AM, Johnny Hughes wrote:
>
> On 01/15/2016 08:55 AM, Noam Bernstein wrote:
>> I see that this is a CentOS 7 patch only, at least so far. I also see that
>> the CentOS 6 ssh version is 5.3
>> > /usr/bin/ssh -V
>> OpenSSH_5.3p1, OpenSSL 1.0.1e-fips 11 Feb 201
On 01/15/2016 08:55 AM, Noam Bernstein wrote:
> I see that this is a CentOS 7 patch only, at least so far. I also see that
> the CentOS 6 ssh version is 5.3
> > /usr/bin/ssh -V
> OpenSSH_5.3p1, OpenSSL 1.0.1e-fips 11 Feb 2013
> which is supposedly not affected. However, strings indica
Alice Wonder wrote:
> On 01/15/2016 06:39 AM, Johnny Hughes wrote:
>> On 01/14/2016 10:20 AM, Michael H wrote:
>>> Probably worth a read...
>>>
>>> http://www.openssh.com/txt/release-7.1p2
>>>
Important SSH patch coming soon. For now, everyone on all operating
systems, please do the foll
I see that this is a CentOS 7 patch only, at least so far. I also see that the
CentOS 6 ssh version is 5.3
> /usr/bin/ssh -V
OpenSSH_5.3p1, OpenSSL 1.0.1e-fips 11 Feb 2013
which is supposedly not affected. However, strings indicates that /usr/bin/ssh
is also aware for the useroam
On 01/15/2016 06:39 AM, Johnny Hughes wrote:
On 01/14/2016 10:20 AM, Michael H wrote:
Probably worth a read...
http://www.openssh.com/txt/release-7.1p2
Important SSH patch coming soon. For now, everyone on all operating
systems, please do the following:
Add undocumented "UseRoaming no" to s
On 01/14/2016 10:20 AM, Michael H wrote:
> Probably worth a read...
>
> http://www.openssh.com/txt/release-7.1p2
>
>> Important SSH patch coming soon. For now, everyone on all operating
>> systems, please do the following:
>>
>> Add undocumented "UseRoaming no" to ssh_config or use "-oUseRoaming
On 14-01-2016 18:49, Valeri Galtsev wrote:
More than agree! I was highly respecting OpenBSD project, especially for
their openssh. After scandal with OpenBSD IPSEC stack backdoor
accusations, my respect faded grossly,
In what way do spurious accusations reflect on the accused, instead of
the acc
On 14/01/16 17:54, Tony Mountifield wrote:
> In article <5697cab8.6090...@wemoto.com>, Michael H
> wrote:
>> Probably worth a read...
>>
>> http://www.openssh.com/txt/release-7.1p2
>>
>>> Important SSH patch coming soon. For now, everyone on all operating
>>> systems, please do the following:
>>
> Date: Thursday, January 14, 2016 12:49:57 -0600
> From: Valeri Galtsev
>
>
> On Thu, January 14, 2016 11:46 am, m.r...@5-cent.us wrote:
>> Timo Schöler wrote:
>>> -BEGIN PGP SIGNED MESSAGE-
>>> Hash: SHA256
>>>
>>> On 01/14/2016 05:34 PM, m.r...@5-cent.us wrote:
Michael H wrote
On Thu, January 14, 2016 11:46 am, m.r...@5-cent.us wrote:
> Timo Schöler wrote:
>> -BEGIN PGP SIGNED MESSAGE-
>> Hash: SHA256
>>
>> On 01/14/2016 05:34 PM, m.r...@5-cent.us wrote:
>>> Michael H wrote:
Probably worth a read...
http://www.openssh.com/txt/release-7.1p2
>
Timo Schöler wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA256
>
> On 01/14/2016 05:34 PM, m.r...@5-cent.us wrote:
>> Michael H wrote:
>>> Probably worth a read...
>>>
>>> http://www.openssh.com/txt/release-7.1p2
>>>
Important SSH patch coming soon. For now, everyone on all
oper
On Thu, Jan 14, 2016 at 11:34:18AM -0500, m.r...@5-cent.us wrote:
> Michael H wrote:
> > Probably worth a read...
> >
> > http://www.openssh.com/txt/release-7.1p2
> >
> >> Important SSH patch coming soon. For now, everyone on all operating
> >> systems, please do the following:
> >>
> >> Add undoc
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On 01/14/2016 06:05 PM, Timo Schöler wrote:
> On 01/14/2016 05:34 PM, m.r...@5-cent.us wrote:
>> Michael H wrote:
>>> Probably worth a read...
>>>
>>> http://www.openssh.com/txt/release-7.1p2
>>>
Important SSH patch coming soon. For now, ever
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On 01/14/2016 05:34 PM, m.r...@5-cent.us wrote:
> Michael H wrote:
>> Probably worth a read...
>>
>> http://www.openssh.com/txt/release-7.1p2
>>
>>> Important SSH patch coming soon. For now, everyone on all
>>> operating systems, please do the fo
Michael H wrote:
> Probably worth a read...
>
> http://www.openssh.com/txt/release-7.1p2
>
>> Important SSH patch coming soon. For now, everyone on all operating
>> systems, please do the following:
>>
>> Add undocumented "UseRoaming no" to ssh_config or use "-oUseRoaming=no"
>> to prevent upcomin
In article <5697cab8.6090...@wemoto.com>, Michael H wrote:
> Probably worth a read...
>
> http://www.openssh.com/txt/release-7.1p2
>
> > Important SSH patch coming soon. For now, everyone on all operating
> > systems, please do the following:
> >
> > Add undocumented "UseRoaming no" to ssh_conf
Probably worth a read...
http://www.openssh.com/txt/release-7.1p2
> Important SSH patch coming soon. For now, everyone on all operating
> systems, please do the following:
>
> Add undocumented "UseRoaming no" to ssh_config or use "-oUseRoaming=no"
> to prevent upcoming #openssh client bug CVE-20
18 matches
Mail list logo
