nixCraft 🐧Jul 1, 2024
Heads up: regreSSHion: Remote Unauthenticated Code Execution Vulnerability in OpenSSH server. Patch your server ASAP. https://blog.qualys.com/vulnerabilities-threat-research/2024/07/01/regresshion-remote-unauthenticated-code-execution-vulnerability-in-openssh-server also see my openssh security guide for more info https://www.cyberciti.biz/tips/linux-unix-bsd-openssh-server-best-practices.html
OpenSSH CVE-2024-6387 RCE Vulnerability: Risk & Mitigation | Qualys

CVE-2024-6387 exploit in OpenSSH poses remote unauthenticated code execution risks. Find out which versions are vulnerable and how to protect your systems.

Qualys
Show threadSilvenga
@nixCraft do we know if fail2ban mitigates this at all (not sure when an open connection is considered and auth failure in the eyes of fail2ban)?
Jul 1, 2024 at 1:16pmWeb
Show threadErrorNoInternetJul 1, 2024
@silvenga @nixCraft if you set mode = aggressive it'll consider every connection as an attempt, but i don't think that's the default