RE: Query related to "Plaintext Recovery Attack Against SSH"

For the second option you can install 'fail2band', when a maximum of retrys arribes that ip is banned for a time what you was defined.

I have it installed since two years ago, and work's great!

-----Mensaje original-----
De: listbounce@xxxxxxxxxxxxxxxxx [mailto:listbounce@xxxxxxxxxxxxxxxxx] En nombre de K R Venkateshan
Enviado el: miércoles, 04 de febrero de 2009 8:35
Para: secureshell@xxxxxxxxxxxxxxxxx
Asunto: Query related to "Plaintext Recovery Attack Against SSH"

Narayana Smaranas,

I read the OpenSSH security advisory about "Plaintext Recovery Attack". But I was not able to get a clear picture of the same.

Can someone explain in detail about this "Plaintext Recovery Attack against SSH" ?

From the above advisory, it appears that there are two approaches that could be adopted, as a solution to this vulnerability;

By enabling of CTR-mode ciphers only.


By configuration of connection retries.(Can somebody provide more details)

If the second approach of connection retries is to be adopted, what is the proposed solution ?

Narayana Smaranas,

Add more friends to your messenger and enjoy! Go to

Marc Serra - OiS
Manxa 1901 S.L.
Ctra. Les Tries 85
17800 Olot (Girona)
Telf: +34 972 27 64 99

Relevant Pages

  • Re: Anaconda suggestion
    ... > Geoffrey Leach said: ... > Could you provide more information on what you are suggesting? ... Not wishing to take the second option, ... screen I was first on, and to proceed with the install, answering "No" this ...
  • Re: Is it possible to make to make one msi follow another>?
    ... I'll give the second option a try, what happens though if I update an office ... > Hi roga, ... > office then call the antivirus MSI at the end of the office install. ... > second is that Group policy installs the MSI packages in the order they ...
  • Re: Windows XP Pro and SQL Server 2000?
    ... Hi Linda, ... I knew choosing the first option installs without problems. ... If not what are the pro en cons of using the first or the second option? ... you want to install a SQL Server 2000 Development ...
  • Re: A question mostly about Word and Office and thus: OT
    ... I believe there are Office Experts here who may ... I am not an Office expert but I can tell you from experience that your second option would work. ... So I would say go ahead and install Word 2003 in a seperate directory, ...