Configure the Authentication Blocklist and Allowlist Properly

SSH provides the blocklist and allowlist function. You can set a list of users or user groups to allow or deny SSH login for them. By default, this function is not configured in openEuler. The related fields are as follows: AllowUsers userlist specifies the space-separated users who are allowed t...

SUSE SLED12 Security Update : openssh (SUSE-SU-2017:0607-2)

This update for openssh fixes the following issues : - CVE-2016-8858: prevent resource depletion during key exchange bsc1005480 - CVE-2016-10009: limit directories for loading PKCS11 modules to avoid privilege escalation bsc1016366 - CVE-2016-10011: Prevent possible leaks of host private keys to...

CVE-2007-5715

DenyHosts 2.6 processes OpenSSH sshd "not listed in AllowUsers" log messages with an incorrect regular expression that does not match an IP address, which might allow remote attackers to avoid detection and blocking when making invalid login attempts with a username not present in AllowUsers, as...

CVE-2007-5715

DenyHosts 2.6 is vulnerable due to an incorrect regular expression used to parse failed SSH login attempts, which may allow remote attackers to evade detection/block when attempting logins with a username not present in AllowUsers (the issue demonstrated using the root username). Affected impleme...