Narayana Smaranas,
I read the OpenSSH security advisory about "Plaintext Recovery Attack". But I was not able to get a clear picture of the same.
Can someone explain in detail about this "Plaintext Recovery Attack against SSH" ?
From the above advisory, it appears that there are two approaches that could be adopted, as a solution to this vulnerability;
By enabling of CTR-mode ciphers only.
or
By configuration of connection retries.(Can somebody provide more details)
If the second approach of connection retries is to be adopted, what is the proposed solution ?
Narayana Smaranas,
Venkatesha.
Add more friends to your messenger and enjoy! Go to http://messenger.yahoo.com/invite/
I read the OpenSSH security advisory about "Plaintext Recovery Attack". But I was not able to get a clear picture of the same.
Can someone explain in detail about this "Plaintext Recovery Attack against SSH" ?
From the above advisory, it appears that there are two approaches that could be adopted, as a solution to this vulnerability;
By enabling of CTR-mode ciphers only.
or
By configuration of connection retries.(Can somebody provide more details)
If the second approach of connection retries is to be adopted, what is the proposed solution ?
Narayana Smaranas,
Venkatesha.
Add more friends to your messenger and enjoy! Go to http://messenger.yahoo.com/invite/