Rocksolid Light

Welcome to novaBBS (click a section below)

mail  files  register  newsreader  groups  login

Message-ID:  

But Captain -- the engines can't take this much longer!


computers / rocksolid.shared.security / Fuck me, was PuTTY broken

SubjectAuthor
* Fuck me, was PuTTY broken92138902183
`- Fuck me, was PuTTY brokenGuest

1
Fuck me, was PuTTY broken

<70edd83e3f4bdc5e742d707782c1bf80@def4>

 copy mid

https://www.novabbs.com/computers/article-flat.php?id=34&group=rocksolid.shared.security#34

 copy link   Newsgroups: rocksolid.shared.security
Path: i2pn2.org!rocksolid2!def5!POSTED.localhost!not-for-mail
From: 92138902...@anon.com (92138902183)
Newsgroups: rocksolid.shared.security
Message-ID: <70edd83e3f4bdc5e742d707782c1bf80@def4>
Subject: Fuck me, was PuTTY broken
Date: Mon, 18 Mar 2019 21:54:45+0000
Organization: def5
In-Reply-To:
References:
Mime-Version: 1.0
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 8bit
 by: 92138902183 - Mon, 18 Mar 2019 21:54 UTC

https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html

Quote:
These features are new in 0.71 (released 2019-03-16):

Security fixes found by an EU-funded bug bounty programme:
a remotely triggerable memory overwrite in RSA key exchange, which can occur before host key verification
potential recycling of random numbers used in cryptography
on Windows, hijacking by a malicious help file in the same directory as the executable
on Unix, remotely triggerable buffer overflow in any kind of server-to-client forwarding
multiple denial-of-service attacks that can be triggered by writing to the terminal
/Quote

Ok, good that they fixed. But how knows what is still waiting in that source ?

Posted on def4

Re: Fuck me, was PuTTY broken

<q7m25f$mke$1@def5.org>

 copy mid

https://www.novabbs.com/computers/article-flat.php?id=36&group=rocksolid.shared.security#36

 copy link   Newsgroups: rocksolid.shared.security
Path: i2pn2.org!rocksolid2!def5!.POSTED.bogusentry!not-for-mail
From: gue...@retrobbs.rocksolidbbs.com (Guest)
Newsgroups: rocksolid.shared.security
Subject: Re: Fuck me, was PuTTY broken
Date: Fri, 29 Mar 2019 17:19:48 -0400
Organization: Dancing elephants
Lines: 0
Message-ID: <q7m25f$mke$1@def5.org>
References: <70edd83e3f4bdc5e742d707782c1bf80@def4>
Reply-To: Guest <guest@retrobbs.rocksolidbbs.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 8bit
Injection-Date: Fri, 29 Mar 2019 21:19:43 -0000 (UTC)
Injection-Info: def5.org; posting-host="bogusentry:192.168.1.189";
logging-data="23182"; mail-complaints-to="usenet@def5.org"
User-Agent: FUDforum 3.0.7
X-FUDforum: e4062714e2d275bd0cc7c3ee636428b0 <8920>
 by: Guest - Fri, 29 Mar 2019 21:19 UTC

Remote management requires 2 knowledgeable people (one at each end). Now all your p0rn downloads are screwed.
Posted on: def3.i2p

1
server_pubkey.txt

rocksolid light 0.9.7
clearnet tor