Date: Mon, 24 Jun 2002 21:32:53 -0400 (EDT) From: Trevor Johnson <trevor@jpj.net> To: Theo de Raadt <deraadt@cvs.openbsd.org> Cc: "Jacques A. Vidrine" <nectar@FreeBSD.ORG>, <freebsd-security@FreeBSD.ORG> Subject: Re: Hogwash Message-ID: <20020624212639.Q17664-100000@blues.jpj.net> In-Reply-To: <200206250111.g5P1BVLJ015666@cvs.openbsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Theo de Raadt wrote: > There is an upcoming OpenSSH vulnerability that we're working on with > ISS. Details will be published early next week. > > However, I can say that when OpenSSH's sshd(8) is running with priv > seperation, the bug cannot be exploited. Have other SECSH servers--lsh, FreSSH, SSH Communications'--been tested? If so, were there any which failed to be vulnerable? -- Trevor Johnson To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020624212639.Q17664-100000>