[Gllug] [Fwd: [SECURITY] [DSA-134-1] OpenSSH remote vulnerability]
Mark Lowes
hamster at korenwolf.net
Fri Jun 28 08:11:19 UTC 2002
On Fri, 2002-06-28 at 08:28, Nix wrote:
> On 25 Jun 2002, Mark Lowes muttered drunkenly:
> > Looks like it's going to be a busy few weeks in the upgrade
> > department...
> > I'd recommend everyone who's running openssh upgrade, firewall or turn
> > off.
> ... and look out if you're upgrading from canonical sources, because
> those sources haven't integrated Solar Designer's patch to allow
> compression and privsep on Linux-2.2.
Yup currently our default config is with compression off as it makes my
life easier when copying out configs.
> (I've temporarily firewalled off sshd and am using this as an excuse to
> upgrade to 2.4 ;} )
Firewalls in front of tcpwrappers in front of a large machine gun nest.
--
The Flying Hamster <hamster at korenwolf.net>
http://www.korenwolf.net/
"This is not a novel to be tossed aside lightly. It should be thrown
with great force." -- Dorothy Parker
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 192 bytes
Desc: This is a digitally signed message part
URL: <http://mailman.lug.org.uk/pipermail/gllug/attachments/20020628/ceb49359/attachment.pgp>
More information about the GLLUG
mailing list