Re: CERT is Reporting SSH Vulnerabilities

From: Michael Erskine (osiris@deltaville.net)
Date: 12/21/02 

From: osiris@deltaville.net (Michael Erskine)
Date: 20 Dec 2002 16:28:13 -0800

Jem Berkes <jb@users.pc9.org> wrote in message news:<Xns92E983E39F8FAjbuserspc9@205.200.16.73>...
> > http://www.cert.org/advisories/CA-2002-36.html
> >
> > I don't think the exploit is in the wild yet and it may or may not
> > apply to you.
>
> From the page:
>
> OpenSSH
>
> From my testing it seems that the current version of OpenSSH (3.5) is
> not vulnerable to these problems, and some limited testing shows that no
> version of OpenSSH is vulnerable.

Thanks Jem;

I was up to my buttocks in alleygaters when I dropped that one and I
hoped one of you (I trusted) would check it out.

Just got thru cleaning up another crack. Whole damn network. Came in
thru SSH and after reinstalling 4 hosts I noticed that alert. Figured
to drop it and get feedback from the wizards...

OH! Yeah, this one made the mistake of hitting PRI lines on a 5300 RAS
server. One wouldn't think he intended to cause problems but he sure
as hell did. Of 115 lines on the ISP, he had 40 down at any given
time. Well, I have his phone number and am deciding whether to
address the issue with C-4 or wire cutters, 'cause I'm damn sure the
FBI can't provide any help... we aren't AOL, M$, or any of the other
big players recently cracked.

:)
-m-
"What's that you say? Worthless as tits on a boar hog? Right!"

Quantcast