On Sun, Apr 20, 2014 at 05:14:08PM +1000, Damien Miller wrote: > Hi, > > The patch fixes the bug and makes OpenSSH identify itself as 6.6.1 so as > to distinguish itself from the incorrect versions so the compatibility > code to disable the affected KEX isn't activated. Thanks for the patch. I can provide independent confirmation it fixes things. I got 0 failures during key exchange post-patch using my custom KEX checker (built against libssl). Pre-patch I was experiencing about a 0.17% failure rate. --mancha
Attachment:
pgpFpgOssxJpW.pgp
Description: PGP signature
_______________________________________________ openssh-unix-dev mailing list openssh-unix-dev@xxxxxxxxxxx https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev