1 |
Greg Watson wrote: |
2 |
> If you're not already doing so, I recommend to disable password |
3 |
> interactive login and enforce key only logins. This will prevent some |
4 |
> of the ssh exploits, brute-force attacks, and general script kiddies. |
5 |
|
6 |
Are there any exploits for the latest OpenSSH - 3.8.1p1? |
7 |
There was a posting to BUGTRAQ some time ago that there are bugs in PAM |
8 |
authentication in Portable OpenSSH and that they're working with OpenSSH |
9 |
guys, but no news after that. |
10 |
|
11 |
Best Wishes, |
12 |
Viktors |
13 |
|
14 |
-- |
15 |
gentoo-security@g.o mailing list |