Another Critical OpenSSH Vulnerability

preview_player
Показать описание
In this video I discuss the regreSSHion vulnerability CVE-2024-6387, how to mitigate it, and how vulnerabilities like this can be prevented in the future. Learn more about the bug below.

My merch is available at

₿💰💵💲Help Support the Channel by Donating Crypto💲💵💰₿

Monero
45F2bNHVcRzXVBsvZ5giyvKGAgm6LFhMsjUUVPTEtdgJJ5SNyxzSNUmFSBR5qCCWLpjiUjYMkmZoX9b3cChNjvxR7kvh436

Bitcoin
3MMKHXPQrGHEsmdHaAGD59FWhKFGeUsAxV

Ethereum
0xeA4DA3F9BAb091Eb86921CA6E41712438f4E5079

Litecoin
MBfrxLJMuw26hbVi2MjCVDFkkExz8rYvUF
  1. Mental Outlaw
  2. Mental Outlaw
  3. mental
  4. outlaw
  5. based.win
  6. based
Рекомендации по теме
Another Critical OpenSSH 0:08:40

Another Critical OpenSSH Vulnerability

this SSH exploit 0:11:59

this SSH exploit is absolutely wild

regreSSHion: The Critical 0:01:15

regreSSHion: The Critical OpenSSH Vulnerability You Need to Know About!

Critical OpenSSH Vulnerability: 0:11:00

Critical OpenSSH Vulnerability: How to Protect Your Linux System from CVE-2024-6387

Urgent: Critical OpenSSH 0:09:40

Urgent: Critical OpenSSH Vulnerability CVE-2024-6387 regreSSHion – Exploits, Fixes & Prevention...

Protect Your Linux 0:00:45

Protect Your Linux Server: Urgent Update Required for Critical SSH Vulnerability

The 443 Podcast 0:45:26

The 443 Podcast - Episode 296 - OpenSSH regreSSHion Vulnerability

Critical OpenSSH Vulnerability 0:02:08

Critical OpenSSH Vulnerability regreSSHion Explained

Critical OpenSSH Vulnerability 0:00:51

Critical OpenSSH Vulnerability 'regreSSHion' Discovered #ssh #cybernews

TURN OFF SSH 0:09:06

TURN OFF SSH RIGHT NOW ON YOUR NAS - OpenSSH Vulnerability In The Wild!

Securing #OpenSSH: new 0:00:56

Securing #OpenSSH: new #openssh #ssh #vulnerability #CVE-2023-38408 and how to fix #cybersecurity

New Critical OpenSSH 0:00:44

New Critical OpenSSH Vulnerability: CVE-2024-6387 #Shorts

URGENT New OpenSSH 0:01:19

URGENT New OpenSSH Vulnerability Alert

Critical OpenSSH Vulnerability 0:00:44

Critical OpenSSH Vulnerability regreSSHion: CVE-2024-6387 Explained #Shorts

Linux Systems Vulnerable 0:01:54

Linux Systems Vulnerable to Remote Command Injection via OpenSSH

Critical OpenSSH Vulnerability 0:01:07

Critical OpenSSH Vulnerability Exposed (CVE-2024-6409)

OpenSSH regreSSHion Vulnerability 0:00:54

OpenSSH regreSSHion Vulnerability - The 443 Podcast - Episode 296

New OpenSSH Vulnerability 0:01:05

New OpenSSH Vulnerability Exposed - 14 Million Linux Systems at Risk | CVE-2024-6387 #linux #openssh

Satanstealer Malware. OpenSSH 0:00:17

Satanstealer Malware. OpenSSH vulnerability: millions of Linux. Prudential Financial: 2.5M impacted

CVE-2024-6387 #OpenSSH wild 0:05:47

CVE-2024-6387 #OpenSSH wild #Vulnerability regreSSHion Explained do you need to worry?

OpenSSH-Vulnerabilities Are Coming 0:01:53

OpenSSH-Vulnerabilities Are Coming Your Way

This New SSH 0:11:37

This New SSH Exploit Gets You Root Access In Linux Systems!

Update your OpenSSH 0:10:02

Update your OpenSSH ASAP - ThreatWire

“Urgent Security Notice 0:02:13

“Urgent Security Notice OpenSSH Vulnerability'

Комментарии
Автор

“And it’s already got a cute nickname, so you knows it’s a serious bug” facts lol

chashmal
Автор

Oh boy, UEFI buffer overflow and now this

hoot
Автор

A moment of silence for all the CIA, FBI and NSA employees who now have to put in longer hours over the summer days to find a new vulnerability😔

sergeantsugartm
Автор

That's the kinda title you wanna see just minutes after starting sshd

AderynCrow
Автор

My Debian machine is so old it's not affected 😂

pacifico
Автор

Thank god, I keep my SSH endpoints behind Wireguard interfaces. Look like my paranoia is yet again paying off.

b.bergeron
Автор

"...and its already got a cute nickname, so you know this is a really serious bug" - lmao, yeah

Ligands
Автор

The fact it is a recidivist regression highly increases the suspicion it is being (re)added on purpose by some malicious agent/entity...

tiagotiagot
Автор

Nice. Straight to the point, informative and a FAQ included. I love you.

meten
Автор

Oh no, time to patch my personal as well as my companies servers ASAP! Thank you so much for the informative, straight-to-the-point videos that you make. You are a real saint for all the admins and devs out there. Greetings from Germany :D
~ Shinney

ShinneyDev
Автор

Friendship ended with SSH now Telnet is my best friend

SIackware
Автор

i literally just set up openssh for a pihole yesterday you have got to be kidding me

himebito
Автор

Hm. So that’s why openssh had an update an hour ago

tpdblake
Автор

This problem is with Unix signals, not with C. So I bet Rust wouldn't have prevented it, unless they implemented some special handling of Unix signals. Working with those signals is a nightmare.

szaszm_
Автор

"the bugs are back" - dracula flow
lol

slobrat
Автор

One way to avoid this exploit is just to disable password authentication and login with certificates. This is the way in enterprise levels

marcusaurelius
Автор

Its so critical that nobody ever used this outside of a lab situation!!!!

SAK_-
Автор

In 2001 OpenBSD switched syslog to syslog-r, an async-signal-safer version of syslog, which SIGALRM calls, so you can get as far as SIGALRM, but it can't actually bonk syslog-r

also thanks for telling me. This affects Ubuntu and many instances of Docker that are out right now.
Btw this is going to end up unintentionally DDoSing people who use Windows and Putty

erwynnipegerwynnipeg
Автор

I did not know about this. Thank you for posting this because I immediately logged into my servers and updated them.

djc
Автор

Thank you Mental (giant) Man. You RoCk (but don't let that go to your head)

ovalwingnut