SSH / SSL vulnerable?

Brian Dessent brian@dessent.net
Sat May 17 00:47:00 GMT 2008


unsolicited wrote:

> Is cygwin's ssh / ssl vulnerable, as per the recent debian / buntu's
> security alert?

The openssl problem was caused by a Debian local patch that was
installed to quell valgrind warnings.  Valgrind supports only
linux+glibc, so there would be no reason to apply such a patch to a
Cygwin openssl, which is built OOTB from upstream sources with no
changes.

Brian

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/



More information about the Cygwin mailing list