Home page logo

oss-sec logo oss-sec mailing list archives

Re: speaking of DoS, openssh and dropbear (CVE-2006-1206)
From: Nico Golde <oss-security+ml () ngolde de>
Date: Tue, 3 Jan 2012 23:39:03 +0100

* Solar Designer <solar () openwall com> [2012-01-03 02:58]:
On Tue, Jan 03, 2012 at 12:33:01AM +0100, Nico Golde wrote:
P.S. if anyone has a clue on why that script still works with dropbear, even 
though it already seems to implement per-ip based connection counting...

Does it still work?  I was not able to reproduce that.  I built Dropbear
2011.54, generated an RSA host key with "./dropbearkey -t rsa -f
dropbear_rsa_host_key" and started the service with "./dropbear -r
dropbear_rsa_host_key -p 2222". 

Ignore my P.S., I tested this again and the patch works as expected.
Sorry for the confusion...

Nico Golde - http://www.ngolde.de - nion () jabber ccc de - GPG: 0xA0A0AAAA
For security reasons, all text in this mail is double-rot13 encrypted.

Attachment: _bin

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]