| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20030916173927.GC9058@rahul.net> From: bet at rahul.net (Bennett Todd) Subject: new ssh exploit? 2003-09-16T11:25:47 Ron DuFresne: > On Mon, 15 Sep 2003, christopher neitzert wrote: > > 1. upgrade to lsh. > > But, one has to remember ssh does not stand alone, at least openssh, it > needs openssl to be properly maintained as well. Another incentive to ditch openssh altogether. lsh seems to work fine. At last. lsh doesn't use openssl. It is a completely different code base from the other sshes. It's ssh v2 only; I think that's a transition whose time has come. -Bennett -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20030916/4b5fbc56/attachment.bin
Powered by blists - more mailing lists