Re: ssh vulnerability in the wild

To: debian-security@lists.debian.org
Subject: Re: ssh vulnerability in the wild
From: Andreas Barth <aba@not.so.argh.org>
Date: Tue, 16 Sep 2003 20:17:47 +0200
Message-id: <[🔎] 20030916181747.GA14016@mails.so.argh.org>
Mail-followup-to: Andreas Barth <aba@not.so.argh.org>, debian-security@lists.debian.org
In-reply-to: <[🔎] D79968A2-E861-11D7-8540-0003931D9B5A@tedroby.com>
References: <[🔎] 20030916153401.GD8710@mails.so.argh.org> <[🔎] D79968A2-E861-11D7-8540-0003931D9B5A@tedroby.com>

* Ted Roby (secalert@tedroby.com) [030916 19:05]:
> Does this vulnerability require a login? Is a system safe if it does not
> allow root login, and password logins?

No. (And: The patch is uploaded to stable-security, and to unstable,
so just upgrade.)


Cheers,
Andi
-- 
   http://home.arcor.de/andreas-barth/
   PGP 1024/89FB5CE5  DC F1 85 6D A6 45 9C 0F  3B BE F1 D0 C5 D1 D9 0C

Reply to:

References:
- Re: ssh vulnerability in the wild
  - From: Andreas Barth <aba@not.so.argh.org>
- Re: ssh vulnerability in the wild
  - From: Ted Roby <secalert@tedroby.com>

Prev by Date: Re: [d-security] Re: ssh vulnerability in the wild
Next by Date: Re: [d-security] Re: ssh vulnerability in the wild
Previous by thread: Re: ssh vulnerability in the wild
Next by thread: Re: ssh vulnerability in the wild
Index(es):
- Date
- Thread