Subtitle: Qualys finds two worrying bugs in OpenSSH
When I checked my personal rigs Debian had already released the patches and my home server had already auto updated itself.
OpenSSH vulnerabilities could pose huge threat to businesses everywhere
Submitted 1 week ago by gerowen@lemmy.world to technology@lemmy.world
demesisx@infosec.pub 1 week ago
Hot take: Might be wise to adopt the security by obscurity model and go with an OS that is hardened (ideally, a formally verified microkernel like sel4) or runs in a custom VM/container with almost zero attack surface area.