From owner-freebsd-security Wed Nov 28 21:17:15 2001 Delivered-To: freebsd-security@freebsd.org Received: from mailgate.westmarsh.com (orion.westmarsh.com [193.195.76.57]) by hub.freebsd.org (Postfix) with ESMTP id 2CB4F37B405 for ; Wed, 28 Nov 2001 21:17:11 -0800 (PST) Received: from orion.westmarsh.com (mailgate.westmarsh.com [193.195.76.50]) by mailgate.westmarsh.com (8.11.6/8.11.6) with SMTP id fAT5GwX84561 for ; Thu, 29 Nov 2001 05:16:58 GMT (envelope-from Pierre.Dampure@westmarsh.com) Date: Thu, 29 Nov 2001 05:16:58 +0000 From: "Pierre Y. Dampure" To: security@freebsd.org Subject: Re: sshd exploit? Message-Id: <20011129051658.38f45da5.Pierre.Dampure@westmarsh.com> In-Reply-To: <4.3.2.7.2.20011128220001.0465ccc0@localhost> References: <007201c17887$c7ac4b00$0100000a@001> <4.3.2.7.2.20011128220001.0465ccc0@localhost> Organization: Westmarsh eServices X-Mailer: Sylpheed version 0.6.1 (GTK+ 1.2.10; i386--freebsd4.4) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Wed, 28 Nov 2001 22:00:54 -0700, Brett Glass wrote: > > On which versions of SSH or OpenSSH has this been tested? We may need to > shut down a series of hosts if this is for real and not just an ugly > rumor. > The URL below links to a related mail on the OpenSSH developers list: http://marc.theaimsgroup.com/?l=openssh-unix-dev&m=100696253318793&w=2 Hope this helps, PYD To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message