On Wednesday, December 07, 2011 12:30:27 PM Rui Miguel Silva Seabra wrote: > The fact that they immediately (first thing, actually) did was to > upgrade OpenSSH does suggest that there is a Zero Day bug around. While at first blush that would appear to be so, it may be that the openssh was upgraded to get a valuable tunneling feature not present in the CentOS5 openssh (reading through the comments on the Kaspersky item).