« Showdown at the Laptop Corral | Main | Laptop Showdown Update »

New PuTTY Version Fixes Major Security Hole

Tuesday, August 17, 2004

If you use the excellent Windows SSH client PuTTY, make sure to go update to the latest version, 0.55, as soon as possible:

2004-08-03 SECURITY HOLE, fixed in PuTTY 0.55

PuTTY 0.55, released today, fixes a serious security hole which may allow a server to execute code of its choice on a PuTTY client connecting to it. In SSH2, the attack can be performed before host key verification, meaning that even if you trust the server you think you are connecting to, a different machine could be impersonating it and could launch the attack before you could tell the difference. We recommend everybody upgrade to 0.55 as soon as possible.

Recently on Just Well Mixed

Maybe You Can Explain This (September 12, 2008)
Still At Large (September 11, 2008)
Into the Marsh (September 7, 2008)
Good News or Bad News? No Idea (August 22, 2008)
A Good Reason Not to Take Greyhound (August 7, 2008)

Going Meta

Archives: bloggy goodness served fresh since 2002
About Me: satisfy your inner stalker (includes contact info & resumé)

Syndicate Me, Baby

Web feed

Share and Enjoy

Except where otherwise noted, all content on this site is provided under the terms of the Creative Commons Attribution-ShareAlike license.

Obligatory Disclaimer

If you think anything I write here represents the opinions of anybody but myself, you need more help than I can give you. The opinions are all mine, folks. Nobody else's.

If that's too hard to understand... well, I'm sorry. There's only so much I can do. I'm not a therapist, and I'm not a miracle worker. I wish I could help you work through your delusional belief that I'm speaking for anyone else but myself. Honestly, I do. But in the end, that's a monkey you'll have to get off your back on your own. Sorry.