Add workaround for OpenSSH CVE-2016-0777
David Blume commited on 2016-01-19 13:32:15
Showing 3 changed files, with 3 additions and 1 deletions.
- .ssh/config 0000000..b42e43a
- README.md 32567e4..b890703
- setup.sh b035e05..a029e93
| ... | ... |
@@ -0,0 +1 @@ |
| 1 |
+UseRoaming no |
| ... | ... |
@@ -53,6 +53,7 @@ See [config.dlma.com](http://config.dlma.com) for more. |
| 53 | 53 |
8. Assorted favorite colors like [desert](https://github.com/dblume/desert.vim). |
| 54 | 54 |
3. .gitconfig and .gitignore |
| 55 | 55 |
4. .inputrc, for a [partially matched command history traversal](http://askubuntu.com/questions/59846/bash-history-search-partial-up-arrow/59855#59855). |
| 56 |
+5. .ssh/config, for a [fix for CVE-2016-0777](https://news.ycombinator.com/item?id=10901588). (Or upgrade to OpenSSH 7.1p2 released Jan 14, 2016 from http://www.openssh.com.) |
|
| 56 | 57 |
|
| 57 | 58 |
#### What's not installed |
| 58 | 59 |
|
| ... | ... |
@@ -4,7 +4,7 @@ set -eu -o pipefail # See: https://sipb.mit.edu/doc/safe-shell/ |
| 4 | 4 |
declare -r SCRIPT_NAME=$(basename "$BASH_SOURCE") |
| 5 | 5 |
declare -r backup_dir=$HOME/backup_of_dotfiles_`date "+%Y-%m-%d"` |
| 6 | 6 |
declare -a dotfiles=(".bashrc" ".bash_profile" ".vimrc"
|
| 7 |
- ".gitconfig" ".gitignore" ".inputrc") |
|
| 7 |
+ ".gitconfig" ".gitignore" ".inputrc" ".ssh/config") |
|
| 8 | 8 |
declare -i DRY_RUN=0 |
| 9 | 9 |
|
| 10 | 10 |
## exit the shell (with status 2) after printing the message |
| 11 | 11 |