_if_ you're using ubuntu, there's the CVE tracker you can use to ~argue~ establi... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		thewisenerd 14 days ago \| parent \| context \| favorite \| on: Ubuntu LTS releases to 15 years with Legacy add-on _if_ you're using ubuntu, there's the CVE tracker you can use to ~argue~ establish that the versions you're using either aren't affected or, have been patched. https://ubuntu.com/security/cves https://ubuntu.com/security/CVE-2023-28531

thewisenerd 14 days ago [–]

that said, we've also had the same auditor ask us to remove the openssh version upon telnet (which by RFC 4253, is not possible)

so ymmv

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact