Date: Mon, 19 Jul 2004 16:57:48 -0300 (ART) From: Fernando Gleiser <fgleiser@cactus.fi.uba.ar> To: Ray Seals <rseals@vdsi.net> Cc: "freebsd-questions@FreeBSD.org" <freebsd-questions@freebsd.org> Subject: Re: Nessus scan of FreeBSD 5.2.1 shows old version of ssh Message-ID: <20040719165349.J11293@cactus.fi.uba.ar> In-Reply-To: <1090257278.579.9.camel@mgl.magellanhealth.com> References: <1090257278.579.9.camel@mgl.magellanhealth.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 19 Jul 2004, Ray Seals wrote: > I just ran a Nessus scan against one of my machines. The scan triggered > on a version of ssh older than 3.7.1. It's a false positive. Nessus just checks the version number, it doesn't try to exploit the vulnerability to find if the system is indeed vulnerable. The sshd version in FreeBSD is older, but it's patched and not vulnerable. Don't worry about it. > > I ran /usr/bin/ssh -v and found that I have version 3.6.1p1. I'm Fer
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040719165349.J11293>