On 01/14/2016 10:20 AM, Michael H wrote: > Probably worth a read... > > http://www.openssh.com/txt/release-7.1p2 > >> Important SSH patch coming soon. For now, everyone on all operating >> systems, please do the following: >> >> Add undocumented "UseRoaming no" to ssh_config or use "-oUseRoaming=no" >> to prevent upcoming #openssh client bug CVE-2016-0777. More later. > > echo "UseRoaming no" >> /etc/ssh/ssh_config For the record, this update is now released (it was yesterday): https://lists.centos.org/pipermail/centos-announce/2016-January/021614.html This contains a patch that disables roaming: https://git.centos.org/commitdiff/rpms!openssh.git/1edce7e6bfedb27a163f35bcacab620a703408ac Thanks, Johnny Hughes -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 198 bytes Desc: OpenPGP digital signature URL: <http://lists.centos.org/pipermail/centos/attachments/20160115/da4a3f8d/attachment-0003.sig>