OpenSSH vulnerability?
Ben Scott
dragonhawk at gmail.com
Thu Jul 9 14:38:18 EDT 2009
On Thu, Jul 9, 2009 at 1:48 PM, Dan Jenkins<dan at rastech.com> wrote:
> OpenSSH 0day FUD <http://isc.sans.org/diary.html?storyid=6760>
I see. It does sound like OpenSSH has a vulnerability here:
"... this was even enough for some web hosting companies to *shut
down* their SSH service ..."
Someone perpetrated a successful DDoS attack against OpenSSH
servers. Of course, the attack vector was human fears, and the
technique social engineering. It's hard to patch OpenSSH against
that.
-- Ben
More information about the gnhlug-discuss
mailing list