Network World

Critical SSH vulnerabilities expose enterprise network infrastructure as patching lags

Researcher at DEF CON reveals some critical challenges in widely used SSH protocol and provider recommendations on how to make it better. The Secure Shell (SSH) protocol serves as the backbone of ...
CSOonline

OpenSSH fixes flaws that enable man-in-the-middle, DoS attacks

Researchers from Qualys found two vulnerabilities that can be combined to bypass the server key verification in OpenSSH clients when the VerifyHostKeyDNS is used, allowing man-in-the-middle attackers ...