There is an exploit for all versions lower than 3.7.1. Allowing root access. It seems to have hit the public domain yesterday. http://www.linuxsecurity.com/advisories/redhat_advisory-3628.html
(this one seems to say 3.1 is ok, but When I first started hunting another site I came across (which I now can't find grrrrr) was suggesting that 3.7.1 should be the version to install, which I did. Regards Marty ----- Original Message ----- From: "Sean Estabrooks" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Wednesday, September 17, 2003 12:05 PM Subject: Re: upgraded ssh from 3.1 to 3.7.1 - now getting connection refused > On Wed, 17 Sep 2003 11:45:23 +0100 > "Martin Moss" <[EMAIL PROTECTED]> wrote: > > > I just upgraded my ssh using the 3.7.1 source tarball (I couldn't find an > > rpm for it). Now when I try to login I get a connection refused. > > > As I am unable to get a connection to the machine, I am not able to provide > > much debugging information. Can anybody give me any pointers as to what to > > look for to sort out the problem? I do have a go between who has access to > > the console. > > the machine in question uses an iptables firewall, but prior to the upgrade > > the system worked fine letting connections to port22 through. > > Martin, > > I'd suggest reinstalling the 3.1 version from rpm, at least until you can > sort problem out in a computer that is closer to you. Trying to > debug through a remote third party with help from the list is going to > be difficult. > > What problem were you trying to solve by upgrading to 3.7 in the first > place? Perhaps, upgrading to the current rawhide rpm package (3.6) > would be easier and still provide what you need. > > Good Luck, > Sean > > > -- > redhat-list mailing list > unsubscribe mailto:[EMAIL PROTECTED] > https://www.redhat.com/mailman/listinfo/redhat-list -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://www.redhat.com/mailman/listinfo/redhat-list
