Go Back   DaemonForums > DaemonForums.org > News

News News regarding BSD and related.

Thread Tools Display Modes
  #1   (View Single Post)  
Old 8th February 2011
J65nko J65nko is offline
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 4,017
Default OpenSSH 5.8 addresses legacy certificate signing vulnerability

From http://www.h-online.com/security/new...y-1184503.html

Less than two weeks after OpenSSH 5.7 arrived, the OpenSSH development team has released version 5.8 / 5.8p1 of its open source SSH (Secure Shell) implementation. According to the developers, the latest update addressees a legacy certificate signing vulnerability that was introduced in OpenSSH 5.6 which could lead to "leaking confidential information". Users that are unable to update to the latest release are advised to avoid generating legacy certificates using OpenSSH 5.6 or 5.7 - legacy certificates are requested by using the "-t" command line option on the ssh-keygen.)
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
ACPI & Legacy USB support classicmanpro NetBSD Installation and Upgrading 0 29th December 2010 05:22 PM
Pidgin MSN connection issues, invalid SSL Certificate chain TerryP Guides 5 8th December 2010 01:06 AM
OpenSSH 5.4 Release J65nko News 0 9th March 2010 08:48 PM
Best fit BSD for legacy system EvilGardenGnome Off-Topic 14 12th June 2008 02:03 AM
What is the best kind of OpenSSH? php111 Other OS 3 3rd June 2008 10:32 PM

All times are GMT. The time now is 12:17 PM.

Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2023, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick