[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW-1] SSH vulnerable are Nokia NAP also vulnerable?
Hi, If you upgrade to the latest version of IPSO, you will find SSHv2 built-in so you do not need to download any other packages. Bestest, Nick Ellenden -----Original Message----- From: Mailing list for discussion of Firewall-1 [mailto:[email protected]]On Behalf Of Nils Kolstein Sent: 23 October 2001 14:00 To: [email protected] Subject: Re: [FW-1] SSH vulnerable are Nokia NAP also vulnerable? Where can I download a seperate SSH2 package for IPSO 3.2.1?? Greetz, Nils Kolstein Internetworking Engineer ICT Access Services Planet Media Group E-mail: [email protected] tel: (+31)fax: (+31)-----Original Message----- From: Juan Concepcion [mailto:[email protected]] Sent: Tuesday, October 23, 2001 12:42 PM To: [email protected] Subject: Re: [FW-1] SSH vulnerable are Nokia NAP also vulnerable? According to NOKIA's technical support group they said they had taken the necessary "precautions" and that this vulnerabiltiy was not a threat to them. But in my opinion I would still upgrade current SSH1 clients to SSH2 for peace of mind. Christian ALT wrote: > After the vulnerability of SSH and increase of scan to locate systems > using SSH, I would like to know if Nokia systems using SSH are > vulnerable to this attack. I am aware that IPSO version 3.4.x > implements SSH2 which is not vulnerable. But previous versions > implement ssh version 1 which is vulnerable. > TLAflash 21.10.2001 Attack Using SSH Hole -- Last week, rumors spread in the hacker underground that scripts were available to gain "root" or system-level access to vulnerable systems. And in recent days, system operators have posted reports on security mailing lists saying they are receiving remote scans from attackers attempting to locate vulnerable systems running SSH. A new hacking tool is being actively used by attackers hoping to take remote control of unpatched Unix-based systems. > http://www.TLAnews.com/TLA/NEWS/2001sec/20011021SSHVulner.htm Any > light on this issue would be greatly appreciated TIA Christian > ALT Telecom and Logistics Associates > Network and Security Company =============================================== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html =============================================== =============================================== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html =============================================== =============================================== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ===============================================
|