Technology news and Jobs arrow Our Blogs arrow Open Sauce arrow OpenSSH developer plays down exploit rumours
OpenSSH developer plays down exploit rumours E-mail
by Sam Varghese   
Thursday, 09 July 2009
Melbourne-based OpenSSH developer Damien Miller has played down rumours of a zero-day exploit in the popular application, saying he had no evidence from the alleged owner of a hacked server to justify the claims floating around the net.

Featured Whitepaper

5 Best Practices for Smartphone Support

SSH or Secure Shell is a program used to log into another computer over a network, to execute commands in a remote machine, and to move files from one machine to another. It provides strong authentication and secure communications over insecure channels. OpenSSH is a free implementation of the program.

Miller, who has been handling the portable OpenSSH project for some years now, said there were three sets of alleged intrusion logs (1 , 2 , 3 ), which, as far as he could ascertain were at the centre of the rumours.

"The first mentions the use of a tool 'openPWN' and the second '0pen0wn' that have names, usage and output consistent with what a real exploit might look like. They could equally be braggadocio or deliberate misinformation," he told iTWire.

He said he had spent some time analysing a packet trace provided by the owner of the allegedly hacked server but it seemed to consists of simple brute-force attacks.

Miller said there were two issues of note that had been fixed since OpenSSH 4.3 - a signal race condition and a privilege separation issue. He said he doubted the former would be being exploited as even Mark Dowd, one of the top security people in the industry, had been unable to create a working exploit for it.

The privilege separation weakness would only allow someone to escalate their own privileges, and would not grant root access by itself, Miller said.

Rumours of a remote exploit in OpenSSH tend to spread rapidly across the internet as many admins would have reason to worry if such rumours were true: mapping of servers across the internet shows that more than 80 percent of those running SSH are using OpenSSH.

The last time there was a major scare about OpenSSH was in 2003. Prior to that, other implementations of SSH were found to be vulnerable to multiple exploits.

Tags See All Tags


Exploit  OpenSSH  Sam Varghese 
Powered By Joomla Tags

Please enable JavaScript in your browser to post your comment!
 
< Next story in category   Previous story in the category >
iTWire user statistics Visitors last 30 days
 694,279
Subscribers 15,210
#1 independent technology news advertise here
  •   *  
  • Search
  • AdvSeach
  • Login
  • Events
  • FreeStuff

- Advertisement -

Featured Whitepapers

...More

Today on iTWireToday on iTWire

Latest news
Open Sauce - A GNU perspective Subscribe to the RSS
Open Sauce focuses on the wonderful, wacky world of free and open source software where people write great applications and actually allow others to use them without payment.
Follow iTWire on Twitter

About iTWire

iTWire is all about technology news, information, jobs and community for the IT and telecommunications industry professional. Subscribe to our free ICT daily newsletter

iTWire and you

Contact , Register , Links , About iTWire , Feedback , Post your jobs , Events , iTWire site map , Start Blogging , MyBlogLog page , Advertise with iTWire , Subscribe to SMS headlines , White Papers