Damien MillerOpenSSH 10.3 has just been released. This includes a few minor security fixes, some small new features and a bunch of bugfixes.
Sindarina, Edge Case Detective@damienmiller Thank you once again for doing this valuable work 😊
ティージェーグレェThank you!
Thanks to all the other OpenSSH contributors too!
I submitted a Pull Request to update MacPorts' OpenSSH to 10.3p1 here:
https://github.com/macports/macports-ports/pull/32001
GitHub's Continuous Integration checks passed, it's up to someone else with commit access to merge it.
I also submitted an article to undeadly.org but I will let one of the other editors give it a second look and publish it in case I introduced any errors (I mean, I know I did inadvertently, but I think I corrected them all? Hopefully!)
This part of the release notes:
" sshd(8): fix condition intoduced in openssh 10.2p1 stable branch
here a PAM module that changed the requested username between
SSH_MSG_USERAUTH_REQUEST messages during authentication could
confuse the PAM stack and let it proceed with a different
understanding of the active username than the rest of sshd.
Reported by Mike Damm."
Makes me wonder if that maybe fixes this which was recently reported: https://trac.macports.org/ticket/73757 (so next I guess I will update that Trac issue and see if that user can test 10.3p1 and see if that resolves their issue).
Regardless, awesome work! Thank you again!
#OpenSSH #MacPorts #OpenBSD #SecureShell #OpenSource #Encryption
Thanks to all the other OpenSSH contributors too!
I submitted a Pull Request to update MacPorts' OpenSSH to 10.3p1 here:
https://github.com/macports/macports-ports/pull/32001
GitHub's Continuous Integration checks passed, it's up to someone else with commit access to merge it.
I also submitted an article to undeadly.org but I will let one of the other editors give it a second look and publish it in case I introduced any errors (I mean, I know I did inadvertently, but I think I corrected them all? Hopefully!)
This part of the release notes:
" sshd(8): fix condition intoduced in openssh 10.2p1 stable branch
here a PAM module that changed the requested username between
SSH_MSG_USERAUTH_REQUEST messages during authentication could
confuse the PAM stack and let it proceed with a different
understanding of the active username than the rest of sshd.
Reported by Mike Damm."
Makes me wonder if that maybe fixes this which was recently reported: https://trac.macports.org/ticket/73757 (so next I guess I will update that Trac issue and see if that user can test 10.3p1 and see if that resolves their issue).
Regardless, awesome work! Thank you again!
#OpenSSH #MacPorts #OpenBSD #SecureShell #OpenSource #Encryption
