Home / Mobile / Heartbleed-like bug in OpenSSH dismissed as a hoax

Scammers claim they found a bug in the remote access tool two years ago

Heartbleed-like bug in OpenSSH dismissed as a hoax

window.ntvConfig = window.ntvConfig || {} ;
window.ntvConfig.keyValues = window.ntvConfig.keyValues || {};
var segs = localStorage.getItem(‘_pnativo’);
if (segs) {
window.ntvConfig.keyValues.permutive = JSON.parse(segs).join(“,”);
}
https://s.ntv.io/serve/load.js
var prodNames = ”;
var prodManufacturers = ”;
var prodCategories = ”;
var prodVendors = ”;

var insiderSignedIn = document.cookie.indexOf(“nsdr”) > -1; //check if Insider cookie exists
var idg_uuid = $.cookie(‘idg_uuid’) || ”;

var dlJobFunction = ”;
var dlJobPosition = ”;
var dlIndustry = ”;

if (insiderSignedIn) {
var insiderToken = IDG.insiderReg.readCookie(“nsdr”);
var tokens = IDG.insiderReg.readCookieProperty(insiderToken);
if (!(tokens[‘jobPosition’]===undefined)) {
//dlJobPosition = tokens[‘jobPosition’];
//OC-1647 change to indicate this data was remove
dlJobPosition = “removed”;
}
if (!(tokens[‘jobFunction’]===undefined)) {
dlJobFunction = tokens[‘jobFunction’];
}
if (!(tokens[‘industry’]===undefined)) {
dlIndustry = tokens[‘industry’];
}
}

insiderSignedIn = insiderSignedIn.toString(); //per Infotrust this needs to be a string, not a boolean

var sincePublished = ‘1885 days’;
sincePublished = sincePublished.split(” “)[0];

//get edition from countryCode
var edition = ”;
if (typeof countryCode !== ‘undefined’ && countryCode !== “”) {//should be defined in locales-editions.jsp if brand has editions
edition = countryCode.toLowerCase();
}

dataLayer=[{
‘articleId’: ‘2176635’,
‘articleDisplayId’:’1′,
‘articleHasVideo’:’false’,
‘articleLocale’: ‘global’,
‘articleTitle’: ‘Heartbleed-like bug in OpenSSH dismissed as a hoax’,
‘articleType’: ‘News’,
‘audience’:’enterprise’,
‘author’:’Jeremy Kirk’,
‘blogName’:”,
‘brandpost’: ‘false’,
‘categoryIdList’:’3311,3390,3303,3574,3388,3688,3513,3048,3308,3248,2206′,
‘categoryIdPrimary’: ‘3311’,
‘contentStrategy’: ”,
‘contentType’:’news’,
‘datePublished’:’2014-05-27′,
‘dateUpdated’:’2014-05-27′,
‘daysSincePublished’:”1885″,
‘daysSinceUpdated’:’1885′,
‘de_normalized_company_name’:$.cookie(‘de_normalized_company_name’),
‘displayType’:’article’,
‘edition’:edition,
‘environment’:’production’,
‘ga_enabled’:’true’,
‘gaTrackingId’:’UA-300704-13′,
‘geolocEnabled’:’true’,
‘goldenTaxonomyIdPrimary’: ‘987’,
‘goldenTaxonomyIdList’: ‘665,973,126,454,144,67,482,942,993,941’,
‘industry’: dlIndustry,
‘insiderSignedIn’:insiderSignedIn,
‘ip_normalized_company_name’:$.cookie(‘ip_normalized_company_name’),
‘isBlog’:’false’,
‘isInsiderContent’:’false’,
‘isICN’: ‘false’,
‘jobFunction’: dlJobFunction,
‘jobPosition’: dlJobPosition,
‘oneRegPlacementID’:oneRegPlacementID,
‘pageNumber’:’1′,
‘platform’:’Web’,
‘podcastSponsored’: ‘false’,
‘primaryCategory’: ‘access control’,
‘ancestorGoldenCategories’: ”,
‘primaryCategoryList’: ‘byod,network security,mdm,wi-fi,network management,malware,encryption,vulnerabilities,open source,security’,
‘primaryAncestorCategoryList’: ‘software,mobile’,
‘prodCategories’:prodCategories.slice(‘|’, -1),
‘prodManufacturers’:prodManufacturers.slice(‘|’, -1),
‘prodNames’:prodNames.slice(‘|’, -1),
‘prodVendors’:prodVendors.slice(‘|’, -1),
‘property’: ‘itnews’,
‘propertyCountry’:’US’,
‘purchaseIntent’:”,
‘skimlinksId’:’111346X1569479′,
‘source’:’idg news service’,
‘sponsorName’:”,
‘suppressMonetization’: supMontMods.toString(),
‘tags’: ”,
‘userId’:idg_uuid,
‘videoAutoplay’:’false’,
‘youtubeId’:”
}];

var _sf_async_config={};

_sf_async_config.uid = 29363;

_sf_async_config.path = “/article/2176635/heartbleed-like-bug-in-openssh-dismissed-as-a-hoax.html”;
_sf_async_config.title = “Heartbleed-like bug in OpenSSH dismissed as a hoax | ITNews”;
_sf_async_config.domain = “itnews.com”;
if(window.location.href.indexOf(“video”)&&true) {
_sf_async_config.playerdomain= _sf_async_config.domain.replace(“www.”,””);
}

_sf_async_config.useCanonical = true;

_sf_async_config.sections = “access-control”;
_sf_async_config.authors=”Jeremy Kirk”;


var _vwo_code=(function(){
var account_id=306194,
settings_tolerance=2000,
library_tolerance=2500,
use_existing_jquery=false,
/* DO NOT EDIT BELOW THIS LINE */
f=false,d=document;return{use_existing_jquery:function(){return use_existing_jquery;},library_tolerance:function(){return library_tolerance;},finish:function(){if(!f){f=true;var a=d.getElementById(‘_vis_opt_path_hides’);if(a)a.parentNode.removeChild(a);}},finished:function(){return f;},load:function(a){var b=d.createElement(‘script’);b.src=a;b.type=’text/javascript’;b.innerText;b.onerror=function(){_vwo_code.finish();};d.getElementsByTagName(‘head’)[0].appendChild(b);},init:function(){settings_timer=setTimeout(‘_vwo_code.finish()’,settings_tolerance);var a=d.createElement(‘style’),b=’body{opacity:0 !important;filter:alpha(opacity=0) !important;background:none !important;}’,h=d.getElementsByTagName(‘head’)[0];a.setAttribute(‘id’,’_vis_opt_path_hides’);a.setAttribute(‘type’,’text/css’);if(a.styleSheet)a.styleSheet.cssText=b;else a.appendChild(d.createTextNode(b));h.appendChild(a);this.load(‘//dev.visualwebsiteoptimizer.com/j.php?a=’+account_id+’&u=’+encodeURIComponent(d.URL)+’&r=’+Math.random());return settings_timer;}};}());_vwo_settings_timer=_vwo_code.init();

var dataLayer = window.dataLayer = window.dataLayer || [];
var adBlockStatus = ‘false’;

function AdBlockEnabled() {
var ad = document.createElement(‘ins’);
ad.className = ‘AdSense’;
ad.style.display = ‘block’;
ad.style.position = ‘absolute’;
ad.style.top = ‘-1px’;
ad.style.height = ‘1px’;

if (document.body != null) {
document.body.appendChild(ad);
var isAdBlockEnabled = !ad.clientHeight;
document.body.removeChild(ad);
}

return isAdBlockEnabled;
}
// AdBlockEnabled() was successful document.body not null
if (AdBlockEnabled() != undefined) {
adBlockStatus = AdBlockEnabled().toString();
}
// not successful – look for ads.js
if (document.body == null) {
if (window.canRunAds === undefined) {
adBlockStatus = ‘true’;
} else {
adBlockStatus = ‘false’;
}
}

dataLayer.push({
‘adBlockStatus’: adBlockStatus
});

Use commas to separate multiple email addresses

Your message has been sent.

There was an error emailing this page.

By Jeremy Kirk

IDG News Service |


PT

Hackers claiming to have found a critical flaw in a widely used open-source remote login software, OpenSSH, are likely bluffing, according to a developer affiliated with the project.

OpenSSH is used to remotely log into Unix-based systems securely and is incorporated into a number of operating systems, routers and switches made by vendors such as IBM, Hewlett-Packard, Cisco Systems and Red Hat.

On Pastebin, the hackers claim that two years ago they found a problem in OpenSSH that can allow data to be remotely accessed from a server. They claim exploiting the flaw can reveal system user hashes, keys and other random data.

The hackers claim to have set up honeypots, or traps researchers set to see if their computers will be attacked, that show another group may have also discovered the vulnerability. As a result, they say they are willing to sell details of the flaw for 20 bitcoins, or around US$8,600.

“We don’t have access to exploit black markets, and we are now happy to offer it for sale to you both black and white hats,” they wrote.

Their claim was met with immediate skepticism. Theo de Raadt, the founder of the OpenBSD project which OpenSSH is a part of, wrote via email that such claims arise about every six months or so.

“We see no evidence it is real,” de Raadt wrote. “Anyone could mock up a document like that in an hour or two.”

The code shown on Pastebin is a memory dump that can be generated with a common Unix command, he wrote.

The hackers are attempting to capitalize on the aftermath of the Heartbleed bug in OpenSSL, the cryptographic library that enables SSL (Secure Sockets Layer) or TLS (Transport Security Layer) encryption. Most websites use either SSL or TLS, which is indicated in browsers with a padlock symbol.

The Heartbleed bug, publicly disclosed in early April, touched a wave of patching by system administrators since the flaw could be used to extract private SSL keys and user credentials, a grave threat. It also brought attention to problems around underfunded open-source projects whose code is nonetheless widely used across Internet infrastructure.

Similar to OpenSSL, a vulnerability in OpenSSH would pose a high risk. Despite its wide use, OpenSSH is dependent on donations to fund its development. Over the years it has received little support from vendors, de Raadt said.

The two sole big names on the OpenBSD Foundation’s list of significant contributors are Facebook, which donated for this year’s campaign that sought $150,000, according to a list of significant contributors. Google is listed as a benefactor for the last three years.

Despite Heartbleed, the enthusiasm for supporting critical open-source projects appears to already be waning, de Raadt said.

“I don’t know if there’s enough vision,” he wrote. “Industry wide, the apathy regarding this recent problem is already setting in — shiny things are happening elsewhere, people are forgetting.”

Send news tips and comments to jeremy_kirk@idg.com. Follow me on Twitter: @jeremy_kirk

Copyright © 2019 IDG Communications, Inc.

Source

About IT News Ug

Check Also

iPhone 6 rumor rollup for the week ending Nov. 8

June joy, all kinds of bigger screens, sapphires, Air

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.