Re: SSH 1 Why?

From: Emiel Kollof (E.Kollofat_private)
Date: Wed Dec 15 1999 - 04:39:13 PST

Next message: ussr secure: "Re: Local / Remote D.o.S Attack in War FTP Daemon"

Previous message: Spidey: "Xsoldier xploit (was: FreeBSD 3.3 xsoldier root exploit)"
Maybe in reply to: Daniel P. Zepeda: "SSH 1 Why?"
Next in thread: Iván Arce: "Re: SSH 1 Why?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Emiliano Kargieman wrote:
>
> What you are missing is the following: upgrading to SSH 2 implies upgrading to
> version 2 of the protocol, in order to prevent the abovementioned problem you
> can no longer support compatibility with version 1.x of the protocol. So you
> have to update all your SSH servers and clients.

Not true. If you have ssh1 installed, and you compile ssh2, ssh2
maintains version1 protocol compatibility, which means you can still
connect to a ssh2 sshd with a ssh1 client.

> In the real world (somewhere around here?) updating all this clients takes can
> take a long time, so even if you are upgrading to version 2 you need to keep
> backwards compatibility for a while... that means, any problems found in SSH 1
> still concern a lot of people (see the short answer for details).

This might be a valid point. But upgrading *all* clients to ssh2 is not
nessesary. You can still maintain ssh1 compatibility.

Cheers,
Emiel

Next message: ussr secure: "Re: Local / Remote D.o.S Attack in War FTP Daemon"
Previous message: Spidey: "Xsoldier xploit (was: FreeBSD 3.3 xsoldier root exploit)"
Maybe in reply to: Daniel P. Zepeda: "SSH 1 Why?"
Next in thread: Iván Arce: "Re: SSH 1 Why?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 15:21:26 PDT