From owner-freebsd-security  Wed Jun 26  8:42:32 2002
Delivered-To: freebsd-security@freebsd.org
Received: from bunning.skiltech.com (bunning.skiltech.com [216.235.79.240])
	by hub.freebsd.org (Postfix) with ESMTP id 6F49D37B977
	for <freebsd-security@freebsd.org>; Wed, 26 Jun 2002 08:38:23 -0700 (PDT)
Received: (from root@localhost)
	by bunning.skiltech.com (8.11.6/8.11.6) id g5QFcMJ03965;
	Wed, 26 Jun 2002 11:38:22 -0400 (EDT)
	(envelope-from minter)
Received: (from minter@localhost)
	by bunning.skiltech.com (8.11.6/8.11.6) id g5QFcFZ03950;
	Wed, 26 Jun 2002 11:38:15 -0400 (EDT)
	(envelope-from minter)
Date: Wed, 26 Jun 2002 11:38:15 -0400 (EDT)
From: "H. Wade Minter" <minter@lunenburg.org>
X-X-Sender: minter@bunning.skiltech.com
To: Benjamin Krueger <benjamin@seattlefenix.net>
Cc: freebsd-security@freebsd.org
Subject: Re: Much ado about nothing.
In-Reply-To: <20020626072326.A4270@mail.seattleFenix.net>
Message-ID: <20020626113517.N3133-100000@bunning.skiltech.com>
X-Folkin-Excellent: Eddie From Ohio (efohio.com)
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Virus-Scanned: by AMaViS perl-11
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

On Wed, 26 Jun 2002, Benjamin Krueger wrote:

>
> http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=20584


Lemme see if I have this right.

We were all whipped into a "Must Upgrade NOW!!!!" frenzy over this OpenSSH
hole.  It was so severe that it had to be kept in utmost secrecy, and the
S.O.P. seemed to be "If you can't or won't upgrade, then turn off SSH,"...

...and the solution is to disable S/KEY???  That's it?

--Wade

-- 
'I say to you that the VCR is to the American film producer and the American
public as the Boston strangler is to the woman home alone.'
      Jack Valenti on VCRs, 1982

'It's getting clear -- alarmingly clear, I might add -- that we are in the
midst of the possibility of Armageddon.'
      Jack Valenti on the Internet, 2002

http://www.digitalconsumer.org/
http://digitalspeech.org/


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message