Re: Any recent ssh attacks?From: Kutulu (email@example.com)
- Previous message: Rob Edmiston: "Re: FTP Vulnerability via Front Page Extensions?"
- In reply to: Wooi Koay: "Any recent ssh attacks?"
- Next in thread: Mishou, Michael: "RE: Any recent ssh attacks?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 28 Nov 2001 13:49:18 -0500 From: Kutulu <firstname.lastname@example.org> To: Wooi Koay <Wooi@ismg.com> Subject: Re: Any recent ssh attacks? Message-ID: <20011128134918.A4051@pr0n.kutulu.org>
On Tue, Nov 27, 2001 at 01:02:57PM -0500, Wooi Koay wrote:
> I got lots of scans on port 22 recently, is there any known ssh security
> holes being discussed recently? Thanks.
OpenSSH 3.0.0 was released recently, and had remotely exploitable bugs. OpenSSH 3.0.1 was released soon after to fix them,
but I hear it either failed to fix them all, or introduced new ones. At any rate, this accounts for the high volume of ssh
scans, wether the rumors are true or not :)