This is the mail archive of the cygwin@sourceware.cygnus.com mailing list for the Cygwin project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]

[ANNOUNCEMENT]: patched openSSH-1.2.2 [was Re: No this has a nasty bite]

To: Prentis Brooks <prentis at aol dot net>
Subject: [ANNOUNCEMENT]: patched openSSH-1.2.2 [was Re: No this has a nasty bite]
From: Corinna Vinschen <corinna at vinschen dot de>
Date: Sat, 27 May 2000 23:34:31 +0200
CC: Cygwin <cygwin at sourceware dot cygnus dot com>
References: <NEBBLEPLMLJEEFHAGMDMMECJCAAA.prentis@aol.net>
Reply-To: cygwin <cygwin at sourceware dot cygnus dot com>

Prentis Brooks wrote:
> You have RSA Authentication enabled and running as user foo on port 22.  You
> have another Daemon running SSH with password authentication on port 26.  If
> user bar sets up RSA keys in his/her home directory and then connects to
> port 22, it will authenticate him/her via the keys in bar's home directory
> and then promptly drop them to the shell as foo... this is bad.

Should be solved in my new version. You will find it in

ftp://ftp.franken.de/pub/win32/develop/gnuwin32/cygwin/porters/Vinschen_Corinna/V1.1.1

files

	openssh-1.2.2-2.README
	openssh-1.2.2-2.tar.gz
	openssh-1.2.2-2.diff


Have fun,
Corinna

-- 
Corinna Vinschen
Cygwin Developer
Cygnus Solutions, a Red Hat company

--
Want to unsubscribe from this list?
Send a message to cygwin-unsubscribe@sourceware.cygnus.com

Follow-Ups:
- RE: [ANNOUNCEMENT]: patched openSSH-1.2.2 [was Re: No this has a nasty bite]
  - From: Prentis Brooks

References:
- No this has a nasty bite
  - From: Prentis Brooks

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]