OpenSSH challenge-response: a serious vulnerability
A serious OpenSSH vulnerability has been disclosed in the challenge-response authentication code. The patch is available; the impact is substantial.
Notes from the field
Writing
Long-form thinking on cyber defence, detection, and resilience — from Slackware-era honeypots through to AI-driven SOC analytics.
Showing posts tagged openssh — 4 results.
OpenSSH privilege separation, finally
OpenSSH 3.0 includes the privilege-separation work I noted last year as the most important pending architectural improvement. A walk through what it does and why it matters.
Reading OpenSSH source
I have been promising myself I would read OpenSSH source carefully all year. A week of evenings has produced enough notes to write up. The implementation is more disciplined than I had expected and the architectural choices are educational.
OpenSSH 2.x: the SSH-2 transition arrives
OpenSSH 2.0 has shipped, with full support for the SSH-2 protocol. The differences from SSH-1 are larger than the version-number step suggests. Time to migrate, and a few notes on the gotchas.