109 posts tagged openssh

Subscribe
From the IT channel »

I clean up the OpenSSH mess on my Debian Etch box

http://lxer.com/ module/ newswire/ ext_link.php?rid=103054
I clean up the OpenSSH mess on my Debian Etch box Click; By Steven Rosenberg (Posted by Steven_Rosenber on May 17, 2008 10:01 AM) Story Type: Editorial, Tutorial; Groups: Community, Debian, Ubuntu Cleaning up the mess left by the OpenSSH vulnerability in Debian and Debian-based distros (including Ubuntu) is easier than I thought. ...
10 hours ago in LXer: Linux News
Tags:
  1. Photo of mypapit

    ssh-vulkey : How to test weak SSH keys on your server

    http://blog.mypapit.net/ 2008/ 05/ using-ssh-vulkey.html

    This might be stale news by most security alert people, but I felt compelled to write this post nevertheless. Byy this time most security alert people have realised that a serious security vulnerability has been discovered in the random number generator used by OpenSSL on Debian and Ubuntu systems, and there are a lot of sites have published information about it.

    1 day ago by mypapit in mypapit gnu/linux blog · Authority: 57
  2. No one has claimed this blog

    [Linux] Setting Up a Debian VNC Server

    http://news.metaparadigma.de/ ?p=237

    I. Abstract No doubt, configuring a web server won’t work without being in the know of basics about the terminal, vim or nano. Anyway many tasks can also performed by administrating a server using a GUI. The problem is: only Windows 2003 or Windows 2008 come with a preinstalled remote desktop connection - and they are really much more expensive than Linux solutions.

    1 day ago in incomplete-news — __what_other_tech-news_don’t_tell__ · Authority: 2
  3. Photo of jmason23

    The viability of remote SSH key cracking

    http://taint.org/ 2008/ 05/ 16/ 165301a.html

    The viability of remote SSH key cracking May 16, 2008 at 4:53 pm Here’s some pretty scary figures from Craig Hughes on the viability of an SSH worm: when doing this, connecting to localhost: find rsa -type f !

    20 hours ago by jmason23 in taint.org: Justin Mason’s Weblog · Authority: 101
  4. Photo of wjlonien

    That’s why I love Debian

    http://wolfgang.lonien.de/ ?p=647

    From loldebian, by Amaya: So refreshing. People who still can laugh about themselves…

    1 day ago by wjlonien in wolfgang.lonien.de · Authority: 23
  5. Photo of securethoughts

    Mitigating SSH Vulnerabilities UsingSingle Packet Authorization

    http://www.securethoughts.net/ 2008/ 05/ mitigating-ssh-vulnerabilities-using-si…

    This past week has seen a bit of activity on the SSH security front. To begin with, on Tuesday (13/05/08) Linux distributions Debian and Ubuntu announced that due to a flaw in the random number generator used to generate cryptographic keys used by OpenSSL, OpenSSH and OpenVPN, making these keys far more predictable than they should be, and can be discovered by performing a brute force attack.

    2 days ago by securethoughts in Securethoughts - Mac OS X and Network Security News, Articles and Forums · Authority: 18
  6. No one has claimed this blog

    Predictable random number generater in Debain’s OpenSSL package

    http://blog.sw-designs.co.uk/ index.php/ 2008/ 05/ 15/ predictable-random-number…

    Since the Debian security advisory was published there has been plenty of discussion about who is to blame and how such a bug has gone unnoticed since September 2006.  While they are important discussions that need to be had, I’ll focus on how to protect your Debian based PCs, laptops, servers, etc.

    1 day ago in SW Designs · No authority yet
  7. Photo of MindBoosterNoori

    The SSH/SSL vulnerability: what you should know

    http://mindboosternoori.blogspot.com/ 2008/ 05/ sshssl-vulnerability-what-you-sh…

    I wasn't going to post about this, but it seems that, for my own sanity, I must. As you might know by now, a Debian Security Advisory came out, talking about a problem that affected the OpenSSL package, not only for Debian but for its derivatives too, like Ubuntu.

    2 days ago by MindBoosterNoori in Mind Booster Noori · Authority: 56
  8. No one has claimed this blog

    [Linux] Severe SSH security issues in Debian

    http://news.metaparadigma.de/ ?p=227

    I. Abstract It has been found by Luciano Bello that the Debian OpenSSL package has a severe security bug since 2006. By removing some lines of code from the md_rand.c source code that originally caused the memory check tool Valgrind to alert (see original Debian discussion here) the box of pandorra has been opened and the flaw been introduced.

    1 day ago in incomplete-news — __what_other_tech-news_don’t_tell__ · Authority: 2
  9. Photo of binaryflow

    Brute Force SSH Attacks On The Rise

    http://www.douglasward.net/ ?p=678

    Brute force SSH attacks have seen a marked increase over the last week.  It’s a good idea to run a daemon on your servers that blocks this kind of attack.  I recommend BlockHosts. “From the most recent reports I have seen, the attackers have been using either ‘low and slow’ style attacks to avoid

    2 days ago by binaryflow in DouglasWard.net · Authority: 4
  10. Photo of binaryflow

    Critical SSH Vulnerability

    http://www.douglasward.net/ ?p=676

    The random number generator that Debian and Ubuntu use to generate ssh keys has a published vulnerability. Debian and Ubuntu Linux users should look into their OpenSSH setup. It turns out the PRNG (Pseudo Random Number Generator) as used was predictable.

    2 days ago by binaryflow in DouglasWard.net · Authority: 4
  1. 1
  2. 2
  3. 3
  4. 4
  5. 5
  6. 6
  7. 7

Mentions by Day

Posts tagged openssh per day for the past 30 days.

Chart of results for openssh

See your posts here

To contribute to this page, include this code in your blog post: