Slashdot Mirror


Serious Security Hole In PuTTY

Tim 'gk^' Nilimaa writes "A serious security hole has been found in PuTY, version 0.54 and before. Simon Tatham and his fellows released PuTTY 0.55 on 2004-08-03 which solves this bug. The bug may allow servers to use PuTTY to act as a machine that you trust, even beforce you verify the hosts key while connecting using SSH2. An attack could be a fact before you know that you have connected to the wrong machine. I (and they) say: upgrade to PuTTY 0.55 - now."

2 of 72 comments (clear)

  1. Putty Question by Gigs · · Score: 1, Offtopic

    Does anyone know how to control putty's screen location? I use putty alot and it always starts at the very top of the screen under a toolbar I have there.

  2. Pint buying by rjw57 · · Score: -1, Offtopic

    Well I for one will be buying Simon a pint for pulling this off so quickly.

    --
    Rich