I second Pablo's recommendation. I've recently undergone a PCI audit, and was flagged for not using OpenSSH 5.0p1 due to a known vulnerability in 4.7p1 (CVE-2008-1483)
If we can please backport this, I would be very appreciative! Thank you, ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2008-1483 ** Changed in: hardy-backports Status: Won't Fix => New -- Please backport OpenSSH 5.1 to Hardy https://bugs.launchpad.net/bugs/286337 You received this bug notification because you are a member of Ubuntu Backports Testing Team, which is subscribed to Hardy Backports. -- ubuntu-backports mailing list [email protected] Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-backports
