nanog mailing list archives
Re: new openssh issue
From: Valdis.Kletnieks () vt edu
Date: Tue, 16 Sep 2003 15:50:04 -0400
On Tue, 16 Sep 2003 15:33:03 EDT, Richard A Steenbergen said:
patched, but does anybody know whether there's a problem with the criscos? (as in "how do I configure my router for that?" ;-)Or better yet, the OpenSSH running on Junipers? Nothing on Juniper's site about a vulnerability so far.
A posting to full-disclosure quotes Theo as saying HP and Cisco are affected, and I don't see any reason that Juniper would *NOT* be, given the common code base of the OpenSSH implementations. I'm not going to say the routers are vulnerable, but I *would* say that ACLs blocking port 22 to the router might be a good idea.....
Attachment:
_bin
Description:
Current thread:
- new openssh issue Len Rose (Sep 16)
- Re: new openssh issue William Allen Simpson (Sep 16)
- Re: new openssh issue Richard A Steenbergen (Sep 16)
- Re: new openssh issue Valdis . Kletnieks (Sep 16)
- Re: new openssh issue Avleen Vig (Sep 17)
- Now a Sendmail issue as well (was Re: new openssh issue) Mike Tancsa (Sep 17)
- Re: new openssh issue up (Sep 17)
- Re: new openssh issue Richard A Steenbergen (Sep 16)
- Re: new openssh issue William Allen Simpson (Sep 16)
- <Possible follow-ups>
- RE: new openssh issue Ingevaldson, Dan (ISS Atlanta) (Sep 16)
- RE: new openssh issue Ingevaldson, Dan (ISS Atlanta) (Sep 16)
- RE: new openssh issue Buhrmaster, Gary (Sep 17)