OpenSSH Security Advisory (adv.iss)

Damien Miller djm at mindrot.org
Thu Jun 27 09:41:54 EST 2002

Previous message: OpenSSH Security Advisory (adv.iss)
Next message: OpenSSH Security Advisory (adv.iss)
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, 2002-06-27 at 03:44, Bob Van Cleef wrote:
> Question:  If ChallengeResponseAuthentication is set to 'no' in
> sshd_config, can the bug be exploited in OpenSSH_3.1p1?  

No, but there are other fixes so you should upgrade anyway.

-d

Previous message: OpenSSH Security Advisory (adv.iss)
Next message: OpenSSH Security Advisory (adv.iss)
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the openssh-unix-dev mailing list