OpenSSH Security Advisory (adv.iss)

Bob Van Cleef vancleef at microunity.com
Thu Jun 27 03:44:48 EST 2002

Previous message: OpenSSH Security Advisory (adv.iss)
Next message: OpenSSH Security Advisory (adv.iss)
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, 26 Jun 2002, Markus Friedl wrote:

> 2. Impact:
> 
>         This bug can be exploited remotely if
>         ChallengeResponseAuthentication is enabled in sshd_config.
> 

Question:  If ChallengeResponseAuthentication is set to 'no' in
sshd_config, can the bug be exploited in OpenSSH_3.1p1?  

Bob

Previous message: OpenSSH Security Advisory (adv.iss)
Next message: OpenSSH Security Advisory (adv.iss)
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the openssh-unix-dev mailing list