31 Jul
2002
31 Jul
'02
14:55
Olaf Kirch wrote:
On Tue, Jul 30, 2002 at 09:58:43PM +0100, Graham Murray wrote:
Openssh uses openssl. Is openssh vulnerable to any of the openssl exploits?
Potentially, yes. It may be possible to trigger the ASN.1 signedness bug when decoding RSA keys during/after RSA authentication. The other bugs, no, because OpenSSH doesn't use SSL.
AFAIK by now, this is only "exploitable", if there are RSA2-Keys in your authorized_keys, it might even only be exploitable on BSDs (but I'm not very sure about that) (According to Markus Friedl from OpenSSH). But there's no possibility of an anonymous exploit. Use DSA-Keys and you should be safe. I probably would have lost this mornings breakfast if SSH would've been vulnerable *again*. Ralph