> IMO now that OpenSSH supports the SSH2 protocol, I don't see any
> reason to use the commercial version(s). I certainly haven't found
> any benefit that they provide.
I don't either, but in case you were implementing it now, you should know
that a vulnerability for ssh was just discovered:
SSH Protocol 1.5 Session Key Recovery Vulnerability
http://www.linuxsecurity.com/advisories/other_advisory-1135.html
It doesn't directly impact openssh, but practically every other version is
affected.
dave
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
