You see, OpenSSH doesn't use SSL (as far as I know), but there are provisions in the SecSH standards to use certificates for authentication. Since certificates are ASN.1 blobs, OpenSSH is vulnerable only when using certificates.
why should the word "hacker" only apply to volunteer work? Am I less a hacker when I program at work, for money? I user keep the same style of programming, I clothe myself the same way and so on. The only difference is that I get a paycheck for it.
In that sense, "volunteer" is a little missleading.
For a replacement, I've no eral good ideas that will cover all that "hacker" covers, but I know someone who has "Software Artist" on his business card, and it sure has a nice ring to it:-).
Slashdot Mirror
The item lists are actually a great although simple thing, and allow for functions to be very easily extended without breaking any APIs.
No, unless it handles certificates.
You see, OpenSSH doesn't use SSL (as far as I know), but there are provisions in the SecSH standards to use certificates for authentication. Since certificates are ASN.1 blobs, OpenSSH is vulnerable only when using certificates.
--
Richard Levitte, OpenSSL developper
This goes into a discussion I've had a while ago:
:-).
why should the word "hacker" only apply to volunteer work? Am I less a hacker when I program at work, for money? I user keep the same style of programming, I clothe myself the same way and so on. The only difference is that I get a paycheck for it.
In that sense, "volunteer" is a little missleading.
For a replacement, I've no eral good ideas that will cover all that "hacker" covers, but I know someone who has "Software Artist" on his business card, and it sure has a nice ring to it