232
'Critical' vulnerability in OpenSSH uncovered, affects almost all Linux systems
(www.computing.co.uk)
A community for everything relating to the linux operating system
Also check out [email protected]
Original icon base courtesy of [email protected] and The GIMP
the in depth technical details
TL;DR; sigalarm handler calls syslog which isn't safe to call from a signal handler context.
Their example exploit needed about 10k attempts to get a remote shell so it's not fast or quiet, but a neat find regardless
I can already imagine the log generated will be a hint. We usually automate those anyway as it is closer to (D)DoS too.