Correct sshd_config path.
Noticed by: cstdenis at ctgameinfo.com
This commit is contained in:
Xin LI
parent
a5b8f65bdb
commit
494b6033e6
Notes:
svn2git
2020-12-08 03:00:23 +00:00
svn path=/head/; revision=43264
1 changed files with 22 additions and 17 deletions
|
|
@ -1,5 +1,5 @@
|
|||
-----BEGIN PGP SIGNED MESSAGE-----
|
||||
Hash: SHA1
|
||||
Hash: SHA512
|
||||
|
||||
=============================================================================
|
||||
FreeBSD-SA-13:14.openssh Security Advisory
|
||||
|
|
@ -10,6 +10,7 @@ Topic: OpenSSH AES-GCM memory corruption vulnerability
|
|||
Category: contrib
|
||||
Module: openssh
|
||||
Announced: 2013-11-19
|
||||
Revised: 2013-11-28
|
||||
Affects: FreeBSD 10.0-BETA
|
||||
Corrected: 2013-11-19 09:35:20 UTC (stable/10, 10.0-STABLE)
|
||||
2013-11-19 09:35:20 UTC (stable/10, 10.0-BETA3-p1)
|
||||
|
|
@ -21,6 +22,11 @@ For general information regarding FreeBSD Security Advisories,
|
|||
including descriptions of the fields above, security branches, and the
|
||||
following sections, please visit <URL:http://security.FreeBSD.org/>.
|
||||
|
||||
0. Revision History
|
||||
|
||||
v1.0 2013-11-19 Initial release.
|
||||
v1.1 2013-11-28 Corrected path to sshd_config.
|
||||
|
||||
I. Background
|
||||
|
||||
OpenSSH is an implementation of the SSH protocol suite, providing an
|
||||
|
|
@ -50,8 +56,8 @@ placed on their account.
|
|||
IV. Workaround
|
||||
|
||||
Disable AES-GCM in the server configuration. This can be accomplished by
|
||||
adding the following /etc/sshd_config option, which will disable AES-GCM
|
||||
while leaving other ciphers active:
|
||||
adding the following /etc/ssh/sshd_config option, which will disable
|
||||
AES-GCM while leaving other ciphers active:
|
||||
|
||||
Ciphers aes128-ctr,aes192-ctr,aes256-ctr,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc
|
||||
|
||||
|
|
@ -121,19 +127,18 @@ VII. References
|
|||
The latest revision of this advisory is available at
|
||||
<URL:http://security.FreeBSD.org/advisories/FreeBSD-SA-13:14.openssh.asc>
|
||||
-----BEGIN PGP SIGNATURE-----
|
||||
Version: GnuPG v1.4.15 (FreeBSD)
|
||||
|
||||
iQIcBAEBAgAGBQJSizUhAAoJEO1n7NZdz2rn6VcQALriII/5f2ipZQeOt41p5oBi
|
||||
r3qQ3uoZc705MGhld/Zz/RjmB8N+NSZUCZQP0sjaEUkksykZNQhmlbvJXB0ywDHP
|
||||
ggIpq++7r2igXMwqqj+7SEtOkQc/rP8/pDjAn0CJKDGIItgpYuqB34sEJNNuYjiM
|
||||
f/bdfXN3zU4VOiIjCjfGuOamGPXCyRdEAm9HKMVWuDqXIjBHdOxhkw2TnyrC77Vd
|
||||
IxOEYsD97XYuJF++55uHBMv+jynrlQfJF9s3+rQVGOqs14KXYJ+HeqFwxJkhIzyg
|
||||
BrxotPNcO6i5lFOiZrCcmEkf3SRh3Ok3CFFFdn9EhOTxrfGKRm/7R+WB0NKT4+ll
|
||||
sAWfhCCMHkhE/j/0L/DCGL8wD6zH1bzpFWn6efAlih4N5YXSJfGlZdkPw0zl/ZgD
|
||||
umYiwpr9PMnPtocfpV51HITNf0T+CUUHJ5bI3Do9cKZyr3yt869r2MNH6PLT0Lyl
|
||||
4YTcN6IC1K+2JXxvjry7wuJWaPUDS/Hl7Rb3vivdyFJsOF6cddCq1uoU/COXjEE7
|
||||
KF2+KXNKyCZvfPYxzaljvQjEEGZFswN21YrG4dk3JbaOEo0/+s06DJe/YDhagRgQ
|
||||
h1DtzesRuV8Mlxf0kCX5dmMEjIYX0ZtsZT7aueoSD0zGDFpiOjMQ2DQ3O9S3UhFz
|
||||
ScAFXjtFwMqy8RkwNzIp
|
||||
=Nkc2
|
||||
iQIcBAEBCgAGBQJSl+hmAAoJEO1n7NZdz2rnHMYP/3yEQldDKONpQ1zS5YfDyVwO
|
||||
wRBTgxMST7ozg/y7/xBA9FIpdRB8fJOgijKKVQv02MCN5xM5mXexxZAu1X3gcWls
|
||||
v8Tf1YogR0IzLKzFDYYqZ/gWg/5vK1ALzPbHRSmDYivUSOyJftvDNFzPZnFp4DsI
|
||||
U30OGxBfLSOvvX5XNGSixmILzv5DLxe7ThGa36oIZCKUAXSrNm79NfGiI0EvXK2Y
|
||||
R3nTjdd5r5F5/K5S59BMmAmKCGIqsTJ/jeICKe49VUK+YyD+Wmr0gohhU6bmENWM
|
||||
aXAD9em+uKGZnlqBUr5YC4vv8NHWuhOTWfl1CTDH4QhFOP+hiJt2w4EvGYORL1R/
|
||||
2VDmFtiiPeebi7ECSTOSudx/xGvycpnUspw4T/b+H+kGar1ZvHpwqRYDC/Wla5Vq
|
||||
Uzi7uIWTdJieLQXRERTln8mtehYmfHurlu1Mltb0v35vkSyUV5V6RjtxRAi0sWbj
|
||||
w1A0lpDga1lom1FI5JTsiGtwV8A3MbmFKLuK7EUQf8I8lS80SptJNMMTkzYeW/Zy
|
||||
jVqSj63Ns3WaDeHMURYfxf2ppb3meBX+Tw0glTBFJlE46c/sZ01zmcM0q1jQk5Vn
|
||||
nHZgnGTKsCqR1VlnARdDicfa3VVhcPxeUkGEALZv1m31jA0AYG7BeAX9pvoQoOGK
|
||||
1Oeu9j2MeszutBto6gqh
|
||||
=6vNc
|
||||
-----END PGP SIGNATURE-----
|
||||
|
|
|
|||
Loading…
Reference in a new issue