OpenSSH Releases Version 5.0 41
os2man lets us know that OpenSSH version 5.0 has been released. The mirrors are linked from the top page. "OpenSSH (OpenBSD Secure Shell) is a set of computer programs providing encrypted communication sessions over a computer network using the ssh protocol. It was created as an open source alternative to the proprietary Secure Shell software suite offered by SSH Communications Security. OpenSSH is available for almost any Operating System."
Re:Stay Classy (Score:5, Informative)
The result is that the maintainers of OpenSSH were not properly notified, and a bug was left in the code. For all that it's worth, it seems Theo was on holidays [undeadly.org], with no access to a computer.
So, sure, it may sound harsh, but I believe it's for a good cause: OpenSSH developers really want a stable and secure software. Consider the announcement a reminder of the proper procedure to warn them of bugs, not a dig at this or that operating system.
Re:security update? (Score:3, Informative)
Re:security update? (Score:3, Informative)
Re:security update? (Score:3, Informative)
It's a stupid versioning scheme, but it's what they use.
Re:Chroot Finally? (Score:4, Informative)
It was available in 4.9, released just days before 5.0.
Re:Stay Classy (Score:3, Informative)
"If you find a new security problem, you can mail it to deraadt@openbsd.org."
If he's going to be out of the country and unavailable for contact, perhaps you should provide an alternative method of reporting security issues that doesn't go through him. (Admittedly, it is the wrong way to report OpenSSH vulnerabilities - presumably the person looked at the wrong page - but it seems to be the official way of reporting issues that affect the rest of OpenBSD.)