On Wed, Oct 04, 2006 at 10:58:48AM +0100, Graeme Stewart wrote:
> A number of sites seem to have been hit by a bugfix(!) in ssh, which
> has been distributed in the current version of SLC. (There's a thread
> on rollout.)
>
...
> I don't think if affects vanilla SL yet, but it's clearly an accident
> waiting to happen. The fix is to change the password on all pool
> accounts to "*".
...
RHEL3/SL3/Centos3/any_proper_RHEL3_clone will not be affected by this
it's just Cern that broke openssh by upgrading to a different version.
Kostas
|