Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS)

CIACTech02-001: Understanding the SSH CRC32 Exploit

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Security Advisories (RSS) CIACTech02-001: Understanding the SSH CRC32 Exploit
# 1  
Old 12-24-2007
CIACTech02-001: Understanding the SSH CRC32 Exploit
In recent months, many servers running ssh have been compromised using the SSH CRC32 Compensation Attack Detector. Compromised machines have either not been upgraded to SSH protocol 2 or have not disabled drop back to SSH protocol 1. Use of this attack allows a remote user to gain root access on a server.


More...
Login or Register to Ask a Question

Previous Thread | Next Thread

4 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

List all files with prepended CRC32 (or other) hash code?

I would like to list all files in a directory tree but with a prepended digest hash code (like CRC32). CRC32 is not a MUST. If suitable another hash code can be used as well. In case of CRC32 the listing should look like 3765AC \usr\bin\spool 23CE99 \usr\bin\spool\list.h ... 11AA04... (3 Replies)
Discussion started by: pstein
3 Replies

2. UNIX for Dummies Questions & Answers

cksum does not give me crc32

Is cksum the right command to calculate the crc32 checksum value? I tried it for a number of files now and every time the results dont match. So there is nothing wrong with the file. Also, cksum gives me an all numerical value while crc32 is alpha numeric. What am I doing wrong? Thanks (9 Replies)
Discussion started by: utamav
9 Replies

3. UNIX for Advanced & Expert Users

cksum's and zip's CRC32 algorithm

Hello! For long I used cksum to find file duplicates in linux and darwin. Now I want to make my own program that does all. However I can't seem to find the correct algorithm. zip and cksum claim to use the same algorithm, but the computated sums are not the same. I've already written an... (4 Replies)
Discussion started by: regnevakrad
4 Replies

4. Programming

crc32 info

hello again, does anyone know where i can find some detailed info about the cyclic redundancy check? thx (2 Replies)
Discussion started by: crashnburn
2 Replies
Login or Register to Ask a Question

LEARN ABOUT CENTOS

bssh

bssh/bvnc/bshell(1)					      General Commands Manual					       bssh/bvnc/bshell(1)

NAME

       bssh/bvnc/bshell - Browse for SSH/VNC servers on the local network

SYNOPSIS

       bssh

       bvnc

       bshell

DESCRIPTION

       bssh/bvnc/bshell  browses  for  SSH/VNC	servers  on  the  local  network, shows them in a GUI for the user to select one and finally calls
       ssh/vncviewer after a selection was made.

       If the binary is called as bssh only ssh servers will be shown. If the binary is called as bvnc only VNC servers  will  be  shown.  If  the
       binary is called as bshell both VNC and SSH servers are shown.

OPTIONS

       -s | --ssh
	      Browse for SSH servers (and only SSH servers) regardless under which name the binary is called.

       -v | --vnc
	      Browse for VNC servers (and only VNC servers) regardless under which name the binary is called.

       -S | --shell
	      Browse for both VNC and SSH servers regardless under which name the binary is called.

       -d | --domain= DOMAIN
	      Browse in the specified domain. If omitted bssh/bvnc/bshell will browse in the default browsing domain (usually .local)

       -h | --help
	      Show help.

AUTHORS

       The Avahi Developers <avahi (at) lists (dot) freedesktop (dot) org>; Avahi is available from http://avahi.org/

SEE ALSO

       avahi-browse(1), ssh(1), vncviewer(1)

COMMENTS

       This man page was written using xml2man(1) by Oliver Kurth.

Manuals 							       User						       bssh/bvnc/bshell(1)