Security Incidents mailing list archives
Re: Attacks against SSH?
From: "f.johan.beisser" <jan () caustic org>
Date: Mon, 3 Dec 2001 14:53:13 -0800 (PST)
On Mon, 3 Dec 2001, Jason Robertson wrote:
Could this potentially be the sftp bug? cve.mitre.org ID: CAN-2001-0816
no. the sftp bug requires that a user is able to log in to the machine (as any given account). OpenSSH would then ignore command restrictions in the key. i'm fairly sure that the exploit simply uses the known CRC32 attack. but i've yet to find any common implimentation of OpenSSH that's vulnerable. I've tested it against 2.3.0 shipped with FreeBSD 4.2 through 4.4, aswell as against OpenSSH 2.9 on OpenBSD 2.9 (release, direct from the cdrom). none of the machines were affected. -------/ f. johan beisser /--------------------------------------+ http://caustic.org/~jan jan () caustic org "John Ashcroft is really just the reanimated corpse of J. Edgar Hoover." -- Tim Triche ---------------------------------------------------------------------------- This list is provided by the SecurityFocus ARIS analyzer service. For more information on this free incident handling, management and tracking system please see: http://aris.securityfocus.com
Current thread:
- Re: Attacks against SSH?, (continued)
- Re: Attacks against SSH? Aaron Schultz (Dec 03)
- Re: Attacks against SSH? f.johan.beisser (Dec 03)
- Re: Attacks against SSH? johan . augustsson (Dec 04)
- Re: Attacks against SSH? Jordan K Wiens (Dec 04)
- Re: Attacks against SSH? Dave Dittrich (Dec 04)
- Re: Attacks against SSH? Jason Baker (Dec 04)
- Re: Attacks against SSH? Michal Zalewski (Dec 04)
- Re: Attacks against SSH? Russell Fulton (Dec 04)
- Re: Attacks against SSH? Przemyslaw Frasunek (Dec 05)
- Re: Attacks against SSH? johan . augustsson (Dec 04)
- Re: Attacks against SSH? f.johan.beisser (Dec 04)
- SSH1 CRC32 Compensation Attacks Armando B. Ortiz (Dec 10)
- Re: SSH1 CRC32 Compensation Attacks Andreas Östling (Dec 10)
- Re: SSH1 CRC32 Compensation Attacks Armando Ortiz (Dec 10)
- Re: Attacks against SSH? Steven S (Dec 03)
- Re: Attacks against SSH? Adam Manock (Dec 04)
- Message not available
- Message not available
- Re: Attacks against SSH? johan . augustsson (Dec 06)