Hello everyone, I would like a little help with a problem. I installed logcheck and I have this message from it multiple times: Jan 25 16:15:38 alpha sshd[5838]: debug: Installing crc compesation attack detector I would like to know what this means and whether I have cause to be worried. thanks you.

There used to be a protocol weakness in the secure shell protocol version 1 quite long ago (1.2.1* something) where it was possible to introduce ssh-protocol-layer commands into the tcp stream without both the daemon as well as the client knowing about it. To work around this attack, the "crc compensation attack detector" (Good that you didn't use the mouse to copy your syslogs! :-) was introduced into the protocol and the implementations. It is unknown if this vulnerability has been exploited (I believe not...). The secure shell protocol being very complex already, an exploit targeting this weakness is considerably complicated and probably not worth the effort since there are not many of these old implementations in use any more. Thanks, Roman. -- - - | Roman Drahtmüller <draht@suse.de> // "Caution: Cape does | SuSE GmbH - Security Phone: // not enable user to fly." | Nürnberg, Germany +49-911-740530 // (Batman Costume warning label) | - -