SuSE is not vulnerable to the SSH overflow
Hi folks, SuSE is *not* vulnerable to the reasonly found SSH overflow which can result in a root compromise. We don't use the RSA library which has got the bug. Greets, Marc -- Marc Heuse, SuSE GmbH, Schanzaeckerstr. 10, 90443 Nuernberg E@mail: marc@suse.de Function: Security Support & Auditing "lynx -source http://www.suse.de/~marc/marc.pgp | pgp -fka" Key fingerprint = B5 07 B6 4E 9C EF 27 EE 16 D9 70 D4 87 B5 63 6C
Marc Heuse writes:
SuSE is *not* vulnerable to the reasonly found SSH overflow which can result in a root compromise. We don't use the RSA library which has got the bug.
Good to know! I'm using the new firewall script but need an ftp-proxy running on the machine as well, bothe for security and technical reasons. <aside> The defragmentation doesn't always work to masqueraded hosts, which is not just true for ftp, but also for telnet! </aside> Anyway, I've tried the proxy-suite but the documentation is too sparse for me to understand how to set it up to work with the firewall. Any hints would be welcome. Alternatively, if there is additional documentation, even in German, for this puppy, then I'd be happy if you pointed me in its direction. -- Real Name: Bernd Felsche Email: nospam.bernie@perth.DIALix.com.au http://www.perth.dialix.com.au/~bernie - Private HP
On Fri, 12 Nov 1999, Bernd Felsche wrote:
Marc Heuse writes:
SuSE is *not* vulnerable to the reasonly found SSH overflow which can result in a root compromise. We don't use the RSA library which has got the bug.
Good to know!
I'm using the new firewall script but need an ftp-proxy running on the machine as well, bothe for security and technical reasons.
<aside> The defragmentation doesn't always work to masqueraded hosts, which is not just true for ftp, but also for telnet! </aside>
Anyway, I've tried the proxy-suite but the documentation is too sparse for me to understand how to set it up to work with the firewall. Any hints would be welcome.
I know, I know :-)
Alternatively, if there is additional documentation, even in German, for this puppy, then I'd be happy if you pointed me in its direction.
I hope to find the time during the weekend to write some more docs, especially the primer which has been requested not only by you ...
Volker -- Volker Wiegand Phone: +49 (0) 6196 / 50951-24 SuSE Rhein/Main AG Fax: +49 (0) 6196 / 40 96 07 Mergenthalerallee 45-47 Mobile: +49 (0) 179 / 292 66 76 D-65760 Eschborn E-Mail: Volker.Wiegand@suse.de ++ Only users lose drugs. Or was it the other way round? ++
Volker Wiegand writes:
On Fri, 12 Nov 1999, Bernd Felsche wrote:
Anyway, I've tried the proxy-suite but the documentation is too sparse for me to understand how to set it up to work with the firewall. Any hints would be welcome.
I know, I know :-)
Alternatively, if there is additional documentation, even in German, for this puppy, then I'd be happy if you pointed me in its direction.
I hope to find the time during the weekend to write some more docs, especially the primer which has been requested not only by you ...
Now you're making me feel guilty by asking. :-) Like I said, any additional documentation is welcome. You can email me a draft and I'll see if I can make sense of it. I don't mind being a guinea-pig. -- Real Name: Bernd Felsche Email: nospam.bernie@perth.DIALix.com.au http://www.perth.dialix.com.au/~bernie - Private HP
On Fri, 12 Nov 1999, Bernd Felsche wrote:
Volker Wiegand writes:
On Fri, 12 Nov 1999, Bernd Felsche wrote:
Anyway, I've tried the proxy-suite but the documentation is too sparse for me to understand how to set it up to work with the firewall. Any hints would be welcome.
I know, I know :-)
Alternatively, if there is additional documentation, even in German, for this puppy, then I'd be happy if you pointed me in its direction.
I hope to find the time during the weekend to write some more docs, especially the primer which has been requested not only by you ...
Now you're making me feel guilty by asking. :-)
Ummm, actually you help me! The earlier and better the documentation is, the less work I will have as soon as more people start using it.
Like I said, any additional documentation is welcome. You can email me a draft and I'll see if I can make sense of it. I don't mind being a guinea-pig.
Yup, this offer is acceptable. Thanks.
Volker -- Volker Wiegand Phone: +49 (0) 6196 / 50951-24 SuSE Rhein/Main AG Fax: +49 (0) 6196 / 40 96 07 Mergenthalerallee 45-47 Mobile: +49 (0) 179 / 292 66 76 D-65760 Eschborn E-Mail: Volker.Wiegand@suse.de ++ Only users lose drugs. Or was it the other way round? ++
participants (3)
-
Bernd Felsche -
Marc Heuse -
Volker Wiegand