Date: Thu, 30 Jun 2011 11:58:30 -0400 From: Mike Tancsa <mike@sentex.net> To: freebsd-security@freebsd.org Subject: Old SSH bug on RELENG_4 Message-ID: <4E0C9D26.2050108@sentex.net>
next in thread | raw e-mail | index | archive | help
I am sure someone has some boxes out there still.... http://lists.grok.org.uk/pipermail/full-disclosure/2011-June/081722.html A simple work around *seems* to be to disable PAM on sshd. i.e in /etc/ssh/sshd_config set the following from yes to no # Change to no to disable PAM authentication ChallengeResponseAuthentication no I wonder if other apps that make use of PAM can trigger the bug as well ? ---Mike -- ------------------- Mike Tancsa, tel +1 519 651 3400 Sentex Communications, mike@sentex.net Providing Internet services since 1994 www.sentex.net Cambridge, Ontario Canada http://www.tancsa.com/
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4E0C9D26.2050108>