[Gllug] [Fwd: SSH Security Advisory: Centos (and other distros)]

Harry Rickards hrickards at l33tmyst.com
Wed Jul 8 15:36:17 UTC 2009


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Jon Fautley wrote:
> On Tue, 07 Jul 2009 19:56:46 +0100
> Harry Rickards <hrickards at l33tmyst.com> wrote:
> 
>> Just wondered if anyone knew whether this affects Debian stable?
> 
> [snip]
> 
> So you've got an email from someone asking you to go and install some
> "random" SSH RPMs from a non-vendor site, because of a security hole
> they're not disclosing (or, in fact, confirming)?
> 
> Interesting...
> 
> Cheers,
> 
> Jon
> 
It's not a 'random' person, they're my VPS host. It looks as though it
might by the zero day 0pen0wn exploit.

- --
Many thanks
Harry Rickards (GPG Key ID:58449F6F)

- -----BEGIN GEEK CODE BLOCK-----
Version: 3.1
GAT/GCM/GCS/GCC/GIT/GM d? s: a? C++++ UL++++ P- L+++ E--- W+++ N o K+
w--- O- M- V- PS+  PE Y+ PGP++ t 5 X R tv-- b+++ DI D---- G e* h! !r y?
- ------END GEEK CODE BLOCK------
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iJwEAQECAAYFAkpUvPEACgkQ+9DWHFhEn283fQQAoLbclbCsj+PiKFYLvvEG7mVv
hgpu9yi78n2qyNSNjBgyFvV5sUA5p1ZaYRqN080soxs5ZfkKmqDEpTFuZTfruzU7
JBY1p8CRK7fl2sMZCIwGCDXx2QAesblFvmATt4aR9SfBVO/s3daZcucVRb6fw+Lp
ZVt/+2jnrT1KfsHrYSU=
=MYpS
-----END PGP SIGNATURE-----
-- 
Gllug mailing list  -  Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug




More information about the GLLUG mailing list