New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
New OpenSSH vulnerability
Only affects OpenSSH v6.2 and v6.3 when built against an OpenSSL
that supports AES-GCM.
To check your version type ssh -v
Comments
nice info..
http://www.openssh.com/txt/gcmrekey.adv
tl;dr - disbale AES-GCM
https://security-tracker.debian.org/tracker/CVE-2013-4548
6.2 still not patched