[Slackit.org] SSH THE UNSECURE SHELL

slackit-ml

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Slackit.org] SSH THE UNSECURE SHELL

From:	admin
Subject:	[Slackit.org] SSH THE UNSECURE SHELL
Date:	Sun, 17 Apr 2005 14:00:41 +0200

Hi at all,

We have found a security problem on deamon SSHD where through the debug with
strace is possible to sniff all the passwords either in local or in remote
during the authentication. A cracker with root access using this bug can
compromise the system sniffing every login SSH obtaining so all the
passwords used in local and remote access.

If you want to know more you can read the complete article on:
http://www.dc3496.org/

If you find a solution for this problem please let us know, these are our
mail address:
address@hidden
address@hidden

Thanks to the Italian Defcon Users Group and defcon.org(c)

[Prev in Thread]

Current Thread

[Next in Thread]

[Slackit.org] rc.local problem ;(, Cloud, 2005/04/17
- [Slackit.org] SSH THE UNSECURE SHELL, admin <=
  - Re: [Slackit.org] SSH THE UNSECURE SHELL, insomniac, 2005/04/17
    - Re: [Slackit.org] SSH THE UNSECURE SHELL, admin, 2005/04/17
    - Re: [Slackit.org] SSH THE UNSECURE SHELL, insomniac, 2005/04/17
- Re: [Slackit.org] rc.local problem ;(, SukkoPera, 2005/04/17
  - Re: [Slackit.org] rc.local problem ;(, insomniac, 2005/04/17

Prev by Date: [Slackit.org] rc.local problem ;(
Next by Date: Re: [Slackit.org] rc.local problem ;(
Previous by thread: [Slackit.org] rc.local problem ;(
Next by thread: Re: [Slackit.org] SSH THE UNSECURE SHELL
Index(es):
- Date
- Thread