This is the mail archive of the cygwin@sources.redhat.com mailing list for the Cygwin project.


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]

Re: Authentication By-Pass Vulnerability in OpenSSH 2.3.1 (devel snapshot) (fwd)


On Fri, Feb 09, 2001 at 03:17:55AM -0500, Charles Wilson wrote:
> Corinna Vinschen wrote:
> > FYI for those running snapshots.  I have removed the openssh-20010202
> > snapshot from cygwin/latest.
> > 
> > If you are using the openssh-20010202 snapshot PLEASE REVERT BACK TO
> > openssh-20001221 OR openssh-2.3.0p1.!!!
> 
> This means you have to re-regenerate your RSA keys after reverting back
> to the older version, right?

Right, but only the SSH2 RSA keys, not the SSH1 keys. Or you drop
usage of SSH2 RSA until the next official OpenSSH is released.

Corinna

-- 
Corinna Vinschen                  Please, send mails regarding Cygwin to
Cygwin Developer                                mailto:cygwin@cygwin.com
Red Hat, Inc.

--
Want to unsubscribe from this list?
Check out: http://cygwin.com/ml/#unsubscribe-simple


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]