Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2001:081: openssh Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the openssh package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2001:081 (openssh).
In some circumstances, the sshd server may not honor the 'from=' option that can
be associated with a key in a user's ~/.ssh/authorized_keys2 file if multiple
keys are listed. This could allow key-based logins from hosts which should not
be allowed access.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2001:081
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.