Scientific Linux Security Update : openssh on SL4.x i386/x86_64
Low Nessus Plugin ID 60168
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionOpenSSH stores hostnames, IP addresses, and keys in plaintext in the known_hosts file. A local attacker that has already compromised a user's SSH account could use this information to generate a list of additional targets that are likely to have the same password or key.
SolutionUpdate the affected packages.