thr3ads.net - freebsd security - HEADS UP: OpenSSH 3.8p1 [Feb 2004]

If this information is useful, please help other people find it:
Share via:

Dag-Erling Smørgrav

2004-Feb-26 03:32 UTC

HEADS UP: OpenSSH 3.8p1

Take the usual precautions when upgrading.

Also note that I have changed some configuration defaults: the server
no longer accepts protocol version 1 nor password authentication by
default.  If your ssh client does not support ssh protocol version 2
or keyboard-interactive authentication, the recommended measures are:

 1) get a better client
 2) get a better client (I mean it)
 3) get a better client (for real this time!)

and as a last resort

 4) enable procol version 1 and password authentication in sshd_config

DES
-- 
Dag-Erling Sm?rgrav - des@des.no

Sergey A. Osokin

2004-Feb-26 03:36 UTC

head link

HEADS UP: OpenSSH 3.8p1

On Thu, Feb 26, 2004 at 12:30:03PM +0100, Dag-Erling Sm?rgrav
wrote:> Take the usual precautions when upgrading.
> 
> Also note that I have changed some configuration defaults: the server
> no longer accepts protocol version 1 nor password authentication by
> default.  If your ssh client does not support ssh protocol version 2
> or keyboard-interactive authentication, the recommended measures are:
> 
>  1) get a better client
>  2) get a better client (I mean it)
>  3) get a better client (for real this time!)
> 
> and as a last resort
> 
>  4) enable procol version 1 and password authentication in sshd_config
What do you think about add the note into UPDATING?
Thanks.
-- 

Regards,                 /"\  ascii ribbon campaign
Sergey "ozz" Osokin,     \ /    against html mail
http://ozz.pp.ru/         X         and news
                         / \

Mike Tancsa

2004-Feb-26 08:00 UTC

head link

HEADS UP: OpenSSH 3.8p1

Hi,
Are there plans to MFC 3.8 as well as the new sshd_config defaults to 
RELENG_4 ?

         ---Mike

At 06:30 AM 26/02/2004, Dag-Erling Sm?rgrav wrote:>Take the usual precautions when upgrading.
>
>Also note that I have changed some configuration defaults: the server
>no longer accepts protocol version 1 nor password authentication by
>default.  If your ssh client does not support ssh protocol version 2
>or keyboard-interactive authentication, the recommended measures are:
>
>  1) get a better client
>  2) get a better client (I mean it)
>  3) get a better client (for real this time!)
>
>and as a last resort
>
>  4) enable procol version 1 and password authentication in sshd_config
>
>DES
>--
>Dag-Erling Sm?rgrav - des@des.no
>_______________________________________________
>freebsd-security@freebsd.org mailing list
>http://lists.freebsd.org/mailman/listinfo/freebsd-security
>To unsubscribe, send any mail to
"freebsd-security-unsubscribe@freebsd.org"

Seemingly Similar Threads

Search for more apparently analagous threads

freebsd security - Feb 2004 - HEADS UP: OpenSSH 3.8p1

HEADS UP: OpenSSH 3.8p1

HEADS UP: OpenSSH 3.8p1

HEADS UP: OpenSSH 3.8p1

Seemingly Similar Threads