Re: [openssh-unix-announce] Re: Upcoming OpenSSH vulnerability (fwd)

From: Michael Nottebrock (michaelnottebrock@gmx.net)
Date: 06/25/02

• Next message: Dalin S. Owen: "Re: Hogwash"
• Previous message: Jacques A. Vidrine: "Re: [openssh-unix-announce] Re: Upcoming OpenSSH vulnerability (fwd)"
• In reply to: Peter C. Lai: "Re: [openssh-unix-announce] Re: Upcoming OpenSSH vulnerability (fwd)"
• Next in thread: Garrett Wollman: "Re: [openssh-unix-announce] Re: Upcoming OpenSSH vulnerability (fwd)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Tue, 25 Jun 2002 04:52:27 +0200
From: Michael Nottebrock <michaelnottebrock@gmx.net>
To: peter.lai@uconn.edu

Peter C. Lai wrote:
> Is OpenSSH 3.3 now part of the base system? So are we phasing out
> ssh as part of the base system (since the answer to the first
> question is no, and therefore only the portable versions
> have privsep available)?

Well, the OpenSSH-Team does not and probably cannot support all those
releases floating around in various OSes, Linux-Distributions etc. They
do a reasonable job to make sure that people who run a supported release
(e.g. the current one) experience as few troubles as possible. It seems
like FreeBSD (thanks des!) will now try to provide its users with the
'latest and greatest' openssh-portable in the base system (which is
really cool, because that way, openssh-portable will get much more
thorough testing on the FreeBSD platform and fixes and experience from
that will be getting back to the OpenSSH developers), so maybe we'll be
able to be more relaxed about such unfortunate news in the future.

Regards,

-- 
Michael Nottebrock
"The circumstance ends uglily in the cruel result." - Babelfish

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

• application/pgp-signature attachment: stored

• Next message: Dalin S. Owen: "Re: Hogwash"
• Previous message: Jacques A. Vidrine: "Re: [openssh-unix-announce] Re: Upcoming OpenSSH vulnerability (fwd)"
• In reply to: Peter C. Lai: "Re: [openssh-unix-announce] Re: Upcoming OpenSSH vulnerability (fwd)"
• Next in thread: Garrett Wollman: "Re: [openssh-unix-announce] Re: Upcoming OpenSSH vulnerability (fwd)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: FreeBSD Security Advisory FreeBSD-SA-01:24.ssh ... Corrected: OpenSSH [FreeBSD 4.x base system]: ... OpenSSH is installed if you chose to install the 'crypto' distribution ... protocol support is enabled. ... (FreeBSD-Security) [Full-Disclosure] FreeBSD Security Advisory FreeBSD-SA-03:12.openssh ... Category: core, ports ... OpenSSH is a free version of the SSH protocol suite of network ... to be exploitable for code execution on FreeBSD. ... Disable the base system sshd by executing the following command as ... (Full-Disclosure) FreeBSD Security Advisory FreeBSD-SA-03:12.openssh ... Category: core, ports ... OpenSSH is a free version of the SSH protocol suite of network ... to be exploitable for code execution on FreeBSD. ... Disable the base system sshd by executing the following command as ... (FreeBSD-Security) [FreeBSD-Announce] FreeBSD Security Advisory FreeBSD-SA-03:12.openssh ... Category: core, ports ... OpenSSH is a free version of the SSH protocol suite of network ... to be exploitable for code execution on FreeBSD. ... Disable the base system sshd by executing the following command as ... (freebsd-announce) FreeBSD Security Advisory FreeBSD-SA-03:12.openssh ... Category: core, ports ... OpenSSH is a free version of the SSH protocol suite of network ... to be exploitable for code execution on FreeBSD. ... Disable the base system sshd by executing the following command as ... (Bugtraq)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint