[Dshield] openssh update

William Mathews billm at wizardsecurity.net
Wed Sep 17 00:10:26 GMT 2003


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I have several honeypots running around in the "wild" and haven't seen an
upswing in ssh scans either .

- -----Original Message-----
From: list-bounces at dshield.org [mailto:list-bounces at dshield.org]On
Behalf Of Johannes Ullrich
Sent: Tuesday, September 16, 2003 7:50 PM
To: General DShield Discussion List
Subject: RE: [Dshield] openssh update



>     At the time of writing this announcement, it is unclear if the
> buffer_append_space()-bug is exploitable. However, an increasing amount
> of TCP connection attempts to port 22 (the ssh default port) has been
> observed in the internet during the past days, which may indicate that
> there exists an exploit for the error.

hmm. odd. we don't see much ssh scanning so far.


- --
- --------------------------------------------------------------
Johannes Ullrich                     jullrich at euclidian.com
pgp key: http://johannes.homepc.org/PGPKEYS
- --------------------------------------------------------------
   "We regret to inform you that we do not enable any of the
    security functions within the routers that we install."
         support at covad.net
- --------------------------------------------------------------


_______________________________________________
list mailing list
list at dshield.org
To change your subscription options (or unsubscribe), see:
http://www.dshield.org/mailman/listinfo/list
-----BEGIN PGP SIGNATURE-----
Version: PGP 8.0

iQA/AwUBP2emcihI4wZUZO+UEQIxNACgkn79uH3oDJR+iO27sNVYX54uZsIAoNpI
RdtQqkzFWiPs6Z1GPjTqQaM/
=0YtH
-----END PGP SIGNATURE-----




More information about the list mailing list