Matt Kemner wrote: > On Wed, 8 Dec 1999, Leon Brooks wrote: >>> with RSAREF enabled... >> Just bugs, or *ghasp* security holes? > Security holes. > "For SSH up to 1.2.27 compiled with RSAREF2 this implies the remote > execution of arbitrary commands as root." OpenSSH as well, or just regular ssh?