D'oh! More SSH problems

But this time it's not the implementation, it's the protocol.
Check this out for a description:
http://lasecwww.epfl.ch/memo_ssl.shtml

There's a little more general information found in links on Slashdot's story here.

Don't rush out and replace your sshd, though. This attack apparently only affects the web-implementations (webmail, etc) of SSH. We'll see...

Yeah but SSH (the secure shell) does not use SSL (secure socket layer). So this SSL problem should not affect SSH.

Still it is bad news. The fix is trivial, but people are slow in installing patches.