Date: Sun, 14 Nov 1999 23:29:25 -0500 From: Mike Tancsa <mike@sentex.net> To: Brian Fundakowski Feldman <green@FreeBSD.org> Cc: freebsd-security@FreeBSD.org Subject: Re: ssh-1.2.27 remote buffer overflow - work around ?? Message-ID: <4.1.19991114231613.048044c0@granite.sentex.ca> In-Reply-To: <Pine.BSF.4.10.9911142308001.48038-100000@green.myip.org> References: <4.1.19991114225545.04626d60@granite.sentex.ca>
next in thread | previous in thread | raw e-mail | index | archive | help
At 11:12 PM 11/14/99 , Brian Fundakowski Feldman wrote: >On Sun, 14 Nov 1999, Mike Tancsa wrote: > >> >> Actually, in this case, will USA_RESIDENT=NO in the make file then get >> around this problem ? > >Yes, but it would also be against the patents of our wonderful RSA. >Then again, the patent runs out next year; and right now, it's still >pretty much "honor system" unless the RSA wants to sue you for some >reason. I can't condone this technically illegal action. The better >question is why aren't you using OpenSSH? Hi, Thanks for the information. I am not using OpenSSH yet mainly because I have about 30 servers which are effected by this bug, ranging from 2.2-STABLE upto 3.x-STABLE and everything in between-- some mine, some customers. I dont know how OpenSSH will fair on all of them, and I would like to make the upgrade a little more transitioned... i.e. try out OpenSSH on a few machines and make sure everything is there that I need (off the top of my head things like denying ssh access by GID). All my machines are in Canada, but I think our crypto export/import laws were harmonized in the past couple of years.... (Sometime soon after I bought Netscape version 0.9 whenever that was when I got dinged with a 100% munitions import tax!! ) Ideally a patch to the relavant ports would be best. If I had the skills to do so, I would do it, but I dont :-( ---Mike ********************************************************************** Mike Tancsa, Network Admin * mike@sentex.net Sentex Communications Corp, * http://www.sentex.net/mike Cambridge, Ontario * 01.519.651.3400 Canada * To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4.1.19991114231613.048044c0>