RFC: SSH cipher change on pt7
Stephen John Smoogen
smooge at gmail.com
Wed Dec 8 19:46:05 UTC 2010
On Tue, Dec 7, 2010 at 05:45, Jason Brown <jason at jasonbrown.us> wrote:
> Related to ticket #1406, a vulnerability was discovered in the CBC
> cipher for OpenSSH v2. The recommended change is to only allow CTR and
> arcfour ciphers to be used by sshd. This change took affect last night
> on pt7. Please notify us of any issues you may have.
For people who would like to try something please test ssh to
publictest7.fedoraproject.org with various clients and let us know
what works and what breaks. Things to test:
older openssh
other ssh
perl SSH
libssh
my-little-pakmara-ssh
--
Stephen J Smoogen.
"The core skill of innovators is error recovery, not failure avoidance."
Randy Nelson, President of Pixar University.
"Let us be kind, one to another, for most of us are fighting a hard
battle." -- Ian MacLaren
More information about the infrastructure
mailing list