Re: Any recent ssh attacks?

From: Kutulu (kutulu@kutulu.org)
Date: 11/28/01


Date: Wed, 28 Nov 2001 13:49:18 -0500
From: Kutulu <kutulu@kutulu.org>
To: Wooi Koay <Wooi@ismg.com>
Subject: Re: Any recent ssh attacks?
Message-ID: <20011128134918.A4051@pr0n.kutulu.org>

On Tue, Nov 27, 2001 at 01:02:57PM -0500, Wooi Koay wrote:
> I got lots of scans on port 22 recently, is there any known ssh security
> holes being discussed recently? Thanks.
>
> Wooi.

OpenSSH 3.0.0 was released recently, and had remotely exploitable bugs. OpenSSH 3.0.1 was released soon after to fix them,
but I hear it either failed to fix them all, or introduced new ones. At any rate, this accounts for the high volume of ssh
scans, wether the rumors are true or not :)

 --K