Possible OpenSSH 2.9 remote exploit noted on incidents.org

Jeff plug-discuss@lists.PLUG.phoenix.az.us
Thu, 20 Dec 2001 01:15:23 -0700


I've noticed my own machine being scanned for ssh more often the last week. 
It's really odd.  One day I noticed it, and about 3 or 4 days I read about it 
on the web...




On Thursday 13 December 2001 01:55 am, you wrote:
> Thanks much, Bob.  Hadn't seen that and *do* appreciate the heads up.
> Everything I'd seen up 'til now looked like attacks only on versions <
> 2.x.
> 4w 5hi7.
>
> Steve
>
> Bob George wrote:
> > Apologies if this is old news, and I don't usually repeat what's easily
> > read elsewhere, but I noticed this article on incidents.org as well as
> > numerous incidents of aggressive scanning for ssh in recent weeks:
> > http://www.incidents.org/diary/diary.php?id=116
> >
> > I know a lot of folks depend on ssh for secure remote access.
> >
> > - Bob
> >
> > ________________________________________________
> > See http://PLUG.phoenix.az.us/navigator-mail.shtml if your mail doesn't
> > post to the list quickly and you use Netscape to write mail.
> >
> > PLUG-discuss mailing list  -  PLUG-discuss@lists.PLUG.phoenix.az.us
> > http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
>
> ________________________________________________
> See http://PLUG.phoenix.az.us/navigator-mail.shtml if your mail doesn't
> post to the list quickly and you use Netscape to write mail.
>
> PLUG-discuss mailing list  -  PLUG-discuss@lists.PLUG.phoenix.az.us
> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss