Post AYrSTHrrSpEjcRjXBA by BenAveling@infosec.exchange
(DIR) More posts by BenAveling@infosec.exchange
(DIR) Post #AYrRucAdzCliS5zAxc by mjg59@nondeterministic.computer
2023-08-18T16:44:18Z
0 likes, 0 repeats
Why do I keep finding subtle openssh bugs
(DIR) Post #AYrSI1gNIfJEEgzVMu by mjg59@nondeterministic.computer
2023-08-18T16:46:18Z
0 likes, 0 repeats
Ha for once I wasn't this was reported and fixed two months ago (despite having been there since 2021) https://bugzilla.mindrot.org/show_bug.cgi?id=3574
(DIR) Post #AYrSTHrrSpEjcRjXBA by BenAveling@infosec.exchange
2023-08-18T16:46:39Z
0 likes, 0 repeats
@mjg59 are you looking for subtle OpenSSL bugs?
(DIR) Post #AYrSew4wIihJW5PAno by notecharlie@social.bigcavemaps.com
2023-08-18T16:47:28Z
0 likes, 0 repeats
@mjg59 my favourite a few years ago (for which I failed to submit a patch or report): `ListenAddress` in sshd_config can be called multiple times, but `BindAddress` cannot in ssh_config. So you cannot always ssh from the addresses with PTRs on a dual-stack host.
(DIR) Post #AYrSpc6atxN0kvGqI4 by RogerBW@emacs.ch
2023-08-18T16:48:03Z
0 likes, 0 repeats
@mjg59 "Given enough eyeballs, or mjg59, all bugs are shallow."
(DIR) Post #AYrSzizAAyyizRcGG0 by mjg59@nondeterministic.computer
2023-08-18T16:48:00Z
0 likes, 0 repeats
@BenAveling no, they appear to look for me
(DIR) Post #AYrTGlgbO9BMHy3rZg by BenAveling@infosec.exchange
2023-08-18T17:00:13Z
0 likes, 0 repeats
@mjg59 without knowing the nature of these bugs, presumably you’re either pushing the envelope of what’s normally done, or you’re bring more observant than the rest of us. Or both
(DIR) Post #AYrXeWmWr0IupXQ0XY by 0x09@hachyderm.io
2023-08-18T17:48:55Z
0 likes, 0 repeats
@mjg59 you’re a born winner?
(DIR) Post #AYrhl1Lz6HtyvUjmQS by bea@infosec.exchange
2023-08-18T19:42:43Z
0 likes, 0 repeats
@mjg59 you know what you did!