Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
scardine
on Jan 14, 2016
|
parent
|
context
|
favorite
| on:
OpenSSH: client bug CVE-2016-0777
If an enemy takes control of just one of the hosts you ssh into, he will get your private key and can use it to ssh into any other box where you use RSAAuthentication.
protomyth
on Jan 14, 2016
[–]
I already added the mitigation, but I wondering if my servers can be patched on the weekend.
drummer32
on Jan 15, 2016
|
parent
[–]
There is nothing to patch on the server side. You need to ensure the ssh client is updated on the machines you are sshing from.
protomyth
on Jan 16, 2016
|
root
|
parent
[–]
ok thanks, that's what I figured, but it I was getting a bit worried that I was missing something.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search: