By far it is, it is a great product. For a client and even server implementation also www.appgate.com is nice as well! All Swedish Security is good! :) mindterm is an applet that can be local to your system, or imbedded in your webpage and implements a full ssh1/ssh2 compliant application that supports tcp/udp tunneling and ftp as well. It uses Arcfour and supports AES as well as all 4 modes of DES/3DES. Its free for personal use. The server is not and is expensive as hell as most things in Sweden are. Ryan S. -----Original Message----- From: Stefan Suurmeijer [mailto:stefan@raptorweb.nl] Sent: Thursday, June 27, 2002 8:38 AM To: Ryan Swenson Cc: suse-security@suse.com; Olaf Kirch Subject: Re: [suse-security] OpenSSH ISSUE If you're going to go that way you might want to consider the "commercial" ssh version. It's free for non-commercial use (download it from www.ssh.com). Version 3.2 now, and it seems a lot more stable than openssh. Ryan Swenson wrote:

Hello, OpenSSH has released 3.4 which addresses these security issues with regard to challenge response configuration options,etc etc... It fixes several other issues; there now exists official advisories from www.cert.org,www.openssh.com, and ISS. Perhaps everyone stop wasting their time with 3.3 and obtain 3.4 which is well supported and documented.