Christian Pietsch 🍑 on Nostr: Reading about the recent SMTP and SSH vulnerabilities, I get the impression that open ...
Reading about the recent SMTP and SSH vulnerabilities, I get the impression that open source projects, proprietary vendors and government agencies such as npub15pk7myrwepaxmuljzs63aw4sz5j3404sdm876qz50qd3g9869hfsted683 (npub15pk…d683) don't know how to talk to each other. They should at least have something like a red phone.
Please comment here if you have a constructive idea on how to improve the situation! #SECconsulting seems to assume that everyone uses #VINCE, a CMU service I had never heard of.
#SMTP:
https://sec-consult.com/blog/detail/smtp-smuggling-spoofing-e-mails-worldwide/
https://www.postfix.org/smtp-smuggling.html
#SSH:
https://terrapin-attack.com/patches.html
#SMTPsmuggling #Terrapin #ITsec #37c3
Please comment here if you have a constructive idea on how to improve the situation! #SECconsulting seems to assume that everyone uses #VINCE, a CMU service I had never heard of.
#SMTP:
https://sec-consult.com/blog/detail/smtp-smuggling-spoofing-e-mails-worldwide/
https://www.postfix.org/smtp-smuggling.html
#SSH:
https://terrapin-attack.com/patches.html
#SMTPsmuggling #Terrapin #ITsec #37c3