The value that is supposed to generate random keys was reduced to a mere unsigned integer 0 to 32,767. Brute force attack will be much easier. I'd suggest that we should set strict firewall rules on the SSH port 22 for the meantime do not open it to public.
--- Alvin On Sat, May 24, 2008 at 8:18 AM, Raul Limos <[EMAIL PROTECTED]> wrote: > Huge Hole in Open Source Software Found, Leaves Millions Vulnerable: > http://www.dailytech.com/article.aspx?newsid=11869 > _________________________________________________ > Philippine Linux Users' Group (PLUG) Mailing List > http://lists.linux.org.ph/mailman/listinfo/plug > Searchable Archives: http://archives.free.net.ph > -- http://www.alvinatorsplayground.blogspot.com/
_________________________________________________ Philippine Linux Users' Group (PLUG) Mailing List http://lists.linux.org.ph/mailman/listinfo/plug Searchable Archives: http://archives.free.net.ph
