Cybertime Hostmaster wrote: > Anyone looked at the latest sshd vulnerability and patch? > > --Eric >
Yep, upgraded twice in two days--first to 3.7p1 then 3.7.1p1. Both times from source and no problems. The part that is ironic is that all my FreeBSD systems were a breeze but my old OpenBSD 2.8 doesn't look like it has a patch that matches for the 3.7x release (only 3.6 and below) of OpenSSH. It seems like the safe way is to upgrade the same way you installed (source, ports, packages) and then verify your /etc/rc.conf and /etc/defaults/rc.conf to be sure you are loading the updated binary on reboot. You can verify the version by doing '/path/to/sshd -\?' or running it and telnetting to the box on port 22 and getting the banner. -- Chris Scott Host Orlando, Inc. http://www.hostorlando.com/
