Sun SSH vs OpenSSH
2007-12-25 5:48:00
discovered and an alert is sent by CERT, IW, FSISAC, SAGE, etc, it indicates
the vendor and version of software that is vulnerable. Whenever the alert
has to do with ssh, it indicates several vendors, but never Sun. My
understanding is that Sun SSH is based upon a version of OpenSSH. The fact
that Sun SSH is never mentioned in these alerts gives me the impression that
the Sun SSH is not kept up to date. So if one wants to keep abreast of
security issues with the ssh protocol, use OpenSSH and not Sun SSH?
+-----------------------------------------------------------------------+
| Christopher L. Barnard O When I was a boy I was told that |
| cbarnard at tsg.cbot.com / \ anybody could become president. |
| (312) 347-4901 O---O Now I'm beginning to believe it. |
| http://www.cs.uchicago.edu/~cbarnard --Clarence Darrow |
+----------PGP public key available via finger or PGP keyserver---------+
Comments
Got something to say?
You must be logged in to post a comment.
