| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
From: barrie at reboot-robot.net (Barrie Dempster) Subject: OpenSSH is a good choice? On Sat, 2004-12-18 at 01:49 -0200, Carlos de Oliveira wrote: > Hi there! > > I am going to install OpenSSH in one of my servers, but I want to make > sure it is secure. > Does anybody know about vulnerabilites on OpenSSH, if yes, would you > like to suggest me another remote secure shell ? OpenSSH has had a few vulnerabilities in the past but it is extremely good from a security standpoint, the reason it's had a few vulns is that it is commonly audited code (everyone wants to find an OpenSSH bug). Being one of the most widely used FOSS projects gives it this advantage, imo, being so widely audited means the code has to hold up to intense scrutiny. This is something the OpenSSH/BSD guys have stood up to time and time again producing good quality code, at least in regards to security. I personally wouldn't look past it for a secure shell solution. Security aside it's also a very good project with massive amounts of documentation on-line which means you can effectively manage it. With Regards.. Barrie Dempster (zeedo) - Fortiter et Strenue http://www.bsrf.org.uk [ gpg --recv-keys --keyserver www.keyserver.net 0x96025FD0 ] -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: This is a digitally signed message part Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20041220/210cd880/attachment.bin
Powered by blists - more mailing lists