Is MacPort's SSH more secure than Apple's SSH?
I've had an unusual episode of DoS attacks on SSH 4.5 (the one that comes with Tiger and patched with Security Update 2007-003[1]). The SSHD processes are left hanging and the system eventually runs out of TTYs. I installed MacPorts' SSH 4.7. Besides the fact that it's running off of a slightly more obscure port and I've made changes in the sshd_config file to help make SSHD more robust, is there something inherently more robust about MacPorts' version of SSH? It is version 4.7 as opposed to version 4.5. Also, I'm assuming it's not dependent on the whatever makes Apple's implementation susceptible to it's particular problems. Is that a correct assumption? Thanks, Jose [1] http://docs.info.apple.com/article.html?artnum=305214
You might want to read these changelogs. http://www.openssh.com/txt/release-4.6 http://www.openssh.com/txt/release-4.7 On 10/23/07, Jose Hales-Garcia <jose@stat.ucla.edu> wrote:
I've had an unusual episode of DoS attacks on SSH 4.5 (the one that comes with Tiger and patched with Security Update 2007-003[1]). The SSHD processes are left hanging and the system eventually runs out of TTYs.
I installed MacPorts' SSH 4.7. Besides the fact that it's running off of a slightly more obscure port and I've made changes in the sshd_config file to help make SSHD more robust, is there something inherently more robust about MacPorts' version of SSH? It is version 4.7 as opposed to version 4.5. Also, I'm assuming it's not dependent on the whatever makes Apple's implementation susceptible to it's particular problems. Is that a correct assumption?
Thanks, Jose
[1] http://docs.info.apple.com/article.html?artnum=305214
_______________________________________________ macports-users mailing list macports-users@lists.macosforge.org http://lists.macosforge.org/mailman/listinfo/macports-users
participants (2)
-
Jose Hales-Garcia
-
js