Plaintext recovery attack in SSH, discovered by CPNI?
Eygene Ryabinkin
rea-fbsd at codelabs.ru
Fri Nov 21 05:26:35 PST 2008
Damien,
Fri, Nov 21, 2008 at 04:13:43PM +0300, Eygene Ryabinkin wrote:
> Fri, Nov 21, 2008 at 10:10:32PM +1100, Damien Miller wrote:
> > see http://www.openssh.com/txt/cbc.adv
>
> Thanks! Is there some secret place that links to this (and other)
> advisory or I should just poll http://openssh.org/txt/? ;))
I am sorry -- I was not aware that you're in the OpenSSH development
team ;)) The question seems to be a bit stupid ;-/ But still, if
there are some secret places...
--
Eygene
_ ___ _.--. #
\`.|\..----...-'` `-._.-'_.-'` # Remember that it is hard
/ ' ` , __.--' # to read the on-line manual
)/' _/ \ `-_, / # while single-stepping the kernel.
`-'" `"\_ ,_.-;_.-\_ ', fsc/as #
_.-'_./ {_.' ; / # -- FreeBSD Developers handbook
{_.-``-' {_/ #
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 195 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-security/attachments/20081121/6045bbd3/attachment.pgp
More information about the freebsd-security
mailing list