Old SSH bug on RELENG_4
Mike Tancsa
mike at sentex.net
Thu Jun 30 15:58:48 UTC 2011
I am sure someone has some boxes out there still....
http://lists.grok.org.uk/pipermail/full-disclosure/2011-June/081722.html
A simple work around *seems* to be to disable PAM on sshd. i.e in
/etc/ssh/sshd_config
set the following from yes to no
# Change to no to disable PAM authentication
ChallengeResponseAuthentication no
I wonder if other apps that make use of PAM can trigger the bug as well ?
---Mike
--
-------------------
Mike Tancsa, tel +1 519 651 3400
Sentex Communications, mike at sentex.net
Providing Internet services since 1994 www.sentex.net
Cambridge, Ontario Canada http://www.tancsa.com/
More information about the freebsd-security
mailing list