what is SSH, something to do with internet?

BajaNick · 07-12-2004, 01:21 AM

I am running a program called rootkit hunter and it says " warning, SSH v1 allowed " should i change this or is it not a big deal? I dont know what that is but I think it has something to do with security. Thanks for any response.

MS3FGX · 07-12-2004, 01:30 AM

SSH v1 is an insecure early version of the SSH protocol, it should not be used if it can be helped.

overlord73 · 07-12-2004, 01:51 AM

yeah, SSH (secure shell) is a secure shell connection, but V1 should not be used like MS3FGX mentioned.
When rootkit hunter detects a running ssh, change your ssh version in /etc/ssh/sshd.conf (or similiar)

macskeeball · 07-12-2004, 02:05 AM

SSH provides multiple services, and two examples of this are SFTP (file transfer) and remote control from the command-line. SSH is encrypted, so it is much more secure than FTP and telnet. SSH 1 should be used instead of such things, but if possible use SSH 2 which is more secure instead.

MS3FGX · 07-12-2004, 02:09 AM

SSH v1 allows passwords and usernames to be sniffed over the network, so it is no more secure than telnet.

It is slightly harder to sniff a SSH v1 password than a telnet one, but that is hardly a deterrent.

macskeeball · 07-12-2004, 02:19 AM

Interesting. Things for the heads up, though I've been using SSH v2 for some time now.

BajaNick · 07-12-2004, 08:18 PM

Quote:

Originally posted by overlord73
yeah, SSH (secure shell) is a secure shell connection, but V1 should not be used like MS3FGX mentioned.
When rootkit hunter detects a running ssh, change your ssh version in /etc/ssh/sshd.conf (or similiar)

Do I need this for internet connectivity? If not how do I eliminate it? I use guarddog and I do not have that enabled in the list. I just read it allows remote logins, Actually was just trying to do that with another Slack box on my router. I will

BajaNick · 07-12-2004, 09:04 PM

I just upgraded to version 3.2 and I can do ssh -V and it show me 3.2 but when I run rootkit hunter it stills show s that I am using ssh1 ??

MS3FGX · 07-12-2004, 11:57 PM

You don't need it for internet access.

And SSH v1 is still probably allowed in your server's configuration (meaning if someone connected with a SSH v1 client, it would allow it to connect), which is what rootkit is talking about.