{"id":367,"date":"2006-10-31T04:40:00","date_gmt":"2006-10-31T04:40:00","guid":{"rendered":"https:\/\/defragged.org\/ossec\/?p=367"},"modified":"2020-07-03T04:40:48","modified_gmt":"2020-07-03T04:40:48","slug":"using-sshv1-x-sshv2","status":"publish","type":"post","link":"https:\/\/defragged.org\/ossec\/2006\/10\/using-sshv1-x-sshv2\/","title":{"rendered":"Using sshv1 x sshv2"},"content":{"rendered":"\n<p>It has become common knowledge that everyone should use ssh version 2 and whenever possible disable support for version 1. The initial version of ssh has some&nbsp;<a href=\"http:\/\/www.linuxjournal.com\/node\/5672\/print\">design<\/a>&nbsp;<a href=\"http:\/\/slashdot.org\/it\/00\/12\/18\/0759236.shtml\">flaws<\/a>&nbsp;that makes it vulnerable to some attacks (check out&nbsp;<a href=\"http:\/\/www.monkey.org\/~dugsong\/dsniff\/\">dsniff<\/a>). However, I just read the following comment from Theo de Raadt at the&nbsp;<a href=\"http:\/\/marc.theaimsgroup.com\/?l=openbsd-misc&amp;m=116223117423784&amp;w=2\">OpenBSD misc list<\/a>:<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><em>I am actually more worried about security problems in the protocol 2\ncode which is roughly 4-5x as complicated.  People's fears are\nmisplaced.  But it is fun to ride a meme, isn't it.<\/em><\/pre>\n\n\n\n<p>I hope he is not encouraging people to use version 1\u2026<\/p>\n","protected":false},"excerpt":{"rendered":"<p>It has become common knowledge that everyone should use ssh version 2 and whenever possible disable support for version 1. The initial version of ssh has some&nbsp;design&nbsp;flaws&nbsp;that makes it vulnerable to some attacks (check out&nbsp;dsniff). However, I just read the following comment from Theo de Raadt at the&nbsp;OpenBSD misc list: I am actually more worried [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[3],"tags":[],"_links":{"self":[{"href":"https:\/\/defragged.org\/ossec\/wp-json\/wp\/v2\/posts\/367"}],"collection":[{"href":"https:\/\/defragged.org\/ossec\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/defragged.org\/ossec\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/defragged.org\/ossec\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/defragged.org\/ossec\/wp-json\/wp\/v2\/comments?post=367"}],"version-history":[{"count":1,"href":"https:\/\/defragged.org\/ossec\/wp-json\/wp\/v2\/posts\/367\/revisions"}],"predecessor-version":[{"id":368,"href":"https:\/\/defragged.org\/ossec\/wp-json\/wp\/v2\/posts\/367\/revisions\/368"}],"wp:attachment":[{"href":"https:\/\/defragged.org\/ossec\/wp-json\/wp\/v2\/media?parent=367"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/defragged.org\/ossec\/wp-json\/wp\/v2\/categories?post=367"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/defragged.org\/ossec\/wp-json\/wp\/v2\/tags?post=367"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}