Date: Thu, 17 Apr 2008 10:39:12 +0200 From: mouss <mouss@netoyen.net> To: Ian Smith <smithi@nimnet.asn.au> Cc: freebsd-security@freebsd.org Subject: Re: FreeBSD Security Advisory FreeBSD-SA-08:05.openssh Message-ID: <48070CB0.3050303@netoyen.net> In-Reply-To: <Pine.BSF.3.96.1080417155723.23910B-100000@gaia.nimnet.asn.au> References: <Pine.BSF.3.96.1080417155723.23910B-100000@gaia.nimnet.asn.au>
next in thread | previous in thread | raw e-mail | index | archive | help
Ian Smith wrote: > On Thu, 17 Apr 2008, FreeBSD Security Advisories wrote: > > > IV. Workaround > > > > Disable support for IPv6 in the sshd(8) daemon by setting the option > > "AddressFamily inet" in /etc/ssh/sshd_config. > > > > Disable support for X11 forwarding in the sshd(8) daemon by setting > > the option "X11Forwarding no" in /etc/ssh/sshd_config. > > It's not quite clear from this whether both workarounds are required, or > just either one, until upgrading? > my understanding is that either workaround will prevent the problem, since the problem relies on x11 forwarding and ipv6 being both enabled.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?48070CB0.3050303>