Posted on 07/02/2024 10:59:45 AM PDT by ShadowAce
“Since I posted this a few minutes ago, I checked my available updates, and my distro already has the newest package ready to DL with the fix.
I love Open Source!”
And it wasn’t packaged with 20 other garbage downloads that break other stuff at the same time. :)
MS, fix one issue while creating five others.
Ok, thanks. I’m not too versed in commands and such- but will try them when needed- have had to do several when things went awry- or when installing some program not in the app repository.
You use mint dont you? If so, I’ll check the update app again- maybe they have it there today
Yes, there is one Ubuntu security update in there but it doesn’t have any references to what the patch is for... I’m sure they are top of it... Or our version is new enough we don’t have to worry. In which case we will not see a security update for this particular issue.
Thank you. Will give it a go tonight.
Ok thanks- im pretty sure I run the newest mint- but will check when I get home.
I run OpenSUSE 15.5. Here is their statement:
“Only SUSE Linux Enterprise 15 SP6, SUSE Linux Micro 6.0, openSUSE Leap 15.6 and openSUSE Tumbleweed were affected by this problem.”
ran the command and it said SSh wasn’t installed, so my system wouldn’t be vulnerable then?
That would be correct. You're good to go.
Yep. SSH (OpenSSH) is optional on many systems, especially if they have a desktop GUI interface. If it's not installed, it certainly can't cause trouble. :-)
Thanks- i have lots to learn about linux still
thanks- i forget that soem of the posts on linux are abotu servers or systems with other stuff on them-
well that is weird- i checked with ssh -V and came up with
“OpenSSH_8.9p1 Ubuntu-3ubuntu0.10, OpenSSL 3.0.2 15 Mar 2022”
when i run sshd —help - i get
“Command ‘sshd’ not found, but can be installed with:
sudo apt install openssh-server”
Not in the Windple duopoly?
We’ll get you, our little pretties!
ok now im confused-
it seems i have the client when i check with ssh -V
but not the server when i check with sshd -V
woudl i have to have both in order to be vulnerable to the exploit?
No—I think you are safe.
Roger that. The sshd server is the vulnerable component.
the client (ssh) allows you to connect via ssh to other computers
the server (sshd) allows others to connect to your system, so if you don’t have the server no one can connect to you. If you don’t need it, you shouldn’t have it :-)
ah ok, thanks, sorry for the late reply-
Great- thanks for helping- this stuff is confusing to me these days
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.