[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Momonga-devel.en:00024] openssh vulnerability



Hi,

FYI, Kazuhiko updated the OpenSSH package to 3.7.1p1 as a response to:

     CERT Advisory CA-2003-24 Buffer Management Vulnerability in OpenSSH 
     http://www.cert.org/advisories/CA-2003-24.html                  

Discussion on default sshd_config is going on in the devel.ja ML. For ease
of disabling password authentification, UsePAM will be set No. Also
PermitRootLogin will be set No to disable root login via ssh.

Cheers,
zunda

original message:
> Date: Wed, 17 Sep 2003 10:25:33 +0900
> From: Kazuhiko <kazuhiko@xxxxxxxxxx>
> Subject: [Momonga-devel.ja:02075] openssh vulnerability
> To: devel.ja@xxxxxxxxxxxxxxxxx


__________________________________________________
Do You Yahoo!?
Yahoo! BB is Broadband by Yahoo!
http://bb.yahoo.co.jp/