[13011] in bugtraq
Re: ssh 1.2.27 exploit
daemon@ATHENA.MIT.EDU (Beto)
Fri Dec 17 14:11:01 1999
Mime-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Message-Id: <38593094.4D5CEE3C@core-sdi.com>
Date: Thu, 16 Dec 1999 16:21:43 -0300
Reply-To: Beto <core.lists.bugtraq@CORE-SDI.COM>
From: Beto <core.lists.bugtraq@CORE-SDI.COM>
X-To: BUGTRAQ@SECURITYFOCUS.COM
To: BUGTRAQ@SECURITYFOCUS.COM
Content-Transfer-Encoding: 8bit
Daniel Jacobowitz wrote:
>
> You also didn't include exploit_key:
>
That's right, not a big issue, just create a public/private key pairs
using ssh_keygen and rename the private key to exploit_key. Put the key
in the current directory you are running the exploit, and remember to
set the correct file permisions (and owner).
Also, there's another thing you have to make to compile the exploit.
After running configure, edit the Makefile and add -DSSH_EXPLOIT to the
CFLAGS.
--
==============================[ CORE Seguridad de la Informacion S.A.
]=======
Alberto Soliņo WWW
:www.core-sdi.com
Consultor Email
:asolino@core-sdi.com
Pte. Juan D. Peron 315 4p UF 17 TE :
+54-11-4331-5409
CP 1038 Capital Federal FAX :
+54-11-4331-5402
Buenos Aires, Argentina
==============================================================================
--- For a personal reply use asolino@core-sdi.com
