serge1966 0 Posted ... My antivirus software shows potential vulnerability with plink.exe, located in C:\Program Files\AirVPN, which it identifies as putty suite by Simon Tatham, version 0.73. There was a fix for Terrapin attack, which seems to be released with putty version 0.80. Should users do something about it? AirVPN v.2.21.8 Quote Share this post Link to post
OpenSourcerer 1409 Posted ... Quote Anyway, remember that the OpenVPN client, at a first analysis, can't be fooled by this method: if you have connected via SSH, by running a vulnerable SSH client and library, to some entity in the middle which pretends to be us by exploiting the vulnerability, that entity will fail to mimic an OpenVPN connection to one of our servers, because it lacks the proper certificates and keys. On the client side you will be able to establish an SSH connection to the attacker machine (provided that you run a vulnerable ssh), but then OpenVPN will fail to connect. . Quote Hide OpenSourcerer's signature Hide all signatures NOT AN AIRVPN TEAM MEMBER. USE TICKETS FOR PROFESSIONAL SUPPORT. LZ1's New User Guide to AirVPN « Plenty of stuff for advanced users, too! Want to contact me directly? All relevant methods are on my About me page. Share this post Link to post
Not connected, Your IP: 3.143.244.172
Online: 24024 users - 275619 Mbit/s total BW