It's story time here in the Paranoid Penguin. Don't worry—the story is a preface to the nuts-and-bolts sort of stuff you've come to expect in LJ. In fact, there are so many nuts and bolts to play with ...

I've been using Secure Shell (SSH) for decades. With this remote login tool, I can rest assured my remote machines accept logins securely and efficiently. At the same time, I also understand nothing ...

Topic ===== remote root exploit in ssh daemon Problem Description ===== There are two related vulnerabilities in the challenge response handling code in OpenSSH versions 2.3.1p1 through 3.3. They may ...

Researchers at the Qualys Threat Research Unit (TRU) have unearthed discovered a critical security flaw in OpenSSH's server (sshd) in glibc-based Linux systems. They have named this vulnerability ...

If you have more than one Linux computer, you probably use ssh all the time. It is a great tool, but I’ve always found one thing about it strange. Despite having file transfer capabilities in the form ...

If you see a lot of banner ads on certain websites, you know that without a Virtual Private Network (VPN), hackers will quickly ravage your computer and burn down your house. Well, that seems to be ...

Following the posting of Jose Nazario's article, "A Rough Year for OpenSSH", on the Linux Journal web site on January 2nd, we received an e-mail from Theo de Raadt, the OpenSSH project founder. His ...

Researchers from the Threat Research Unit (TRU) of security company Qualys have discovered a critical security vulnerability in the Linux OpenSSH server that relies on the GNU C library (glibc). This ...

A new backdoor has been targeting supercomputers across the world, often stealing the credentials for secure network connections by using a trojanized version of the OpenSSH software. The malware is ...

On Fri, Jun 28, 2002 at 12:46:13PM -0700, Martin Siegert wrote: > Topic > ===== > remote root exploit in ssh daemon > Workaround > ===== > For versions 2.9p1 and later set in /etc/ssh/sshd_config (or ...