oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: speaking of DoS, openssh and dropbear (CVE-2006-1206)

From: Nico Golde <oss-security+ml () ngolde de>
Date: Tue, 3 Jan 2012 23:39:03 +0100
Hi,
* Solar Designer <solar () openwall com> [2012-01-03 02:58]:

On Tue, Jan 03, 2012 at 12:33:01AM +0100, Nico Golde wrote:

P.S. if anyone has a clue on why that script still works with dropbear, even 
though it already seems to implement per-ip based connection counting...


Does it still work?  I was not able to reproduce that.  I built Dropbear
2011.54, generated an RSA host key with "./dropbearkey -t rsa -f
dropbear_rsa_host_key" and started the service with "./dropbear -r
dropbear_rsa_host_key -p 2222". 


Ignore my P.S., I tested this again and the patch works as expected.
Sorry for the confusion...

Cheers
Nico
-- 
Nico Golde - http://www.ngolde.de - nion () jabber ccc de - GPG: 0xA0A0AAAA
For security reasons, all text in this mail is double-rot13 encrypted.

Attachment: _bin
Description:

Previous By Date Next
Previous By Thread Next

Current thread: