· Trouble Tickets
· Compatibility Lists
Welcome to our website
To take full advantage of all features you need to login or register. Registration is completely free and takes only a few seconds.
Posted by: BuyALambo on: 10/27/2004 03:56 PM [ Print | 0 comment(s) ]
I know that a lot of you guys use PuTTY for all of your telnet/ssh needs, so I thought it would be fitting to let you all know that there is a new version that patches a serious security hole.
PuTTY 0.56, released today, fixes a serious security hole which can allow a server to execute code of its choice on a PuTTY client connecting to it. In SSH2, the attack can be performed before host key verification, meaning that even if you trust the server you think you are connecting to, a different machine could be impersonating it and could launch the attack before you could tell the difference. We recommend everybody upgrade to 0.56 as soon as possible. That's two really bad holes in three months. I'd like to apologise to all our users for the inconvenience.So, if you use PuTTY, make sure to grab the latest version.