2 Likes
1 Shares
https://linuxnews.de/regresshion-neue-ssh-sicherheitsluecke/ #ssh #security
falls jemand eine #fritzbox von #avm als #router hat:
ich bin heute morgen noch in die falls getappt mit #ssh.
https://www.heise.de/news/Schiedsverfahren-gewonnen-Domain-fritz-box-gehoert-nun-AVM-9717847.html
Si vous avez un linux dans cette liste qui a mis à jour xz/liblzma
récemment. Rétropédalez .
Surtout quand on découvre que;
openssh does not directly use liblzma. However debian and several other
distributions patch openssh to support systemd notification, and libsystemd
does depend on lzma.
Nearly 11M instances (by unique IP) found vulnerable (~52%).
Background on the #vulnerability: https://terrapin-attack.com
fedivers: https://infosec.exchange/@shadowserver/111691389140858555
#cve #network #internet #security #bug #cyberwar #software #terrapin #attack #danger #administration #update #patch #ssh
Also: At some point, "web development" was mostly about dynamically changing a couple of files using #vim through an #ssh connection to some remote machine. Not to say there's a reason to use newer tools, but quickly fixing minor glitches on a staging machine with an #angular app deployed is slightly more challenging...
Somehow the #rsync transfer is causing problems, when I use the preconfigured host from ssh config it will do this:
receiving incremental file list
delta-transmission enabled
~V escape not available to multiplexed sessions
unexpected tag 113 [receiver/inc]
rsync error: error in rsync protocol data stream (code 12) at io.c(1648) [receiver=3.2.3]
rsync: [generator] write error: Broken pipe (32)
rsync error: error in socket IO (code 10) at io.c(823) [generator=3.2.3]
#SSH config contains this:
ServerAliveInterval 4
ServerAliveCountMax 4
ControlMaster auto
ControlPath /tmp/ssh-%r@%h:%p
ControlPersist 1
ForwardAgent yes
CanonicalizeHostname yes
host entry in ssh config is this:
Host name
Hostname example.org
User username
Compression no
RequestTTY force
DynamicForward 7074
Is the problem the "RequestTTY force" or something else?