From joe at sublimation.org  Fri Nov  8 14:39:28 2013
From: joe at sublimation.org (wbr oblyr)
Date: Fri, 8 Nov 2013 11:39:28 -0800
Subject: [scponly] post authentication openSSH vulnerability
Message-ID: <CAKZr2mo0KsEcfPbrH4yMVtz+0RY06yY7Q_dsw=A+HMfW9xLvyA@mail.gmail.com>

I haven't investigated this vulnerability in openssh yet, but it seems to
directly impact the viability of restricted shells such as rssh and scponly.

http://www.openssh.com/txt/gcmrekey.adv

I recommend that folks investigate their openssh version and configuration,
Joe
-------------- next part --------------
HTML attachment scrubbed and removed