OpenSSH vulnerability (was Re: [PLUG] (forw) smtp attack from 208.187.215.242)
Anthony Schlemmer
aschlemm at attbi.com
Wed Jun 26 00:00:31 UTC 2002
Yea SuSE's response was pretty quick and they've already released RPMs
for OpenSSH 3.3p1. Heck they've even gone so far as to support SuSE 6.4
even through they technically stopped supporting it as of June 17th.
Apparently RPMs for SuSE 6.4 will be coming a bit later.
Tony
On Tuesday 25 June 2002 16:36 pm, Sandy Herring wrote:
> Unrelated to my smtp question - but good info. Thanks for the
> heads-up Anthony. Both SuSE (
> http://online.securityfocus.com/advisories/4231 ) and Mandrake (
> http://online.securityfocus.com/advisories/4228 ) have issued
> advisories (so far, I expect more vendors will follow).
>
> Sandy
>
> On Tue, 25 Jun 2002, Anthony Schlemmer wrote:
> > I'm starting to see some port 22 probes. Maybe in connection with
> > the OpenSSH vulnerability that's been mentioned lately?
> >
> > It seems like a pretty big deal as I received an email from SuSE's
> > Security mailing list and they ranked it a severity 9 out of 10 so
> > it's quite severe. They were recommending disabling SSH or block
> > external access to SSH until details of the vulnerability were
> > published.
> >
> > On Monday 24 June 2002 21:37 pm, Sandy Herring wrote:
> > > I had gotten used to seeing virtually nothing but probes to port
> > > 1433 - until today. Anyone else getting hammered with smtp
> > > probes?
> > >
> > > Sandy
> >
> > --
> > Anthony Schlemmer
> > aschlemm at attbi.com
> >
> >
> >
> > _______________________________________________
> > PLUG mailing list
> > PLUG at lists.pdxlinux.org
> > http://lists.pdxlinux.org/mailman/listinfo/plug
--
Anthony Schlemmer
aschlemm at attbi.com
>>>>This machine was last rebooted: 19:45, days users hours ago<<
More information about the PLUG
mailing list