luca · January 15, 2016 08:14 · Jan 14, 2016 · Jan 14, 2016
diff --git a/disableRoaming.command b/disableRoaming.command
@@ -3,7 +3,7 @@ echo ==========================================================================
 echo  This will disable openSSH roaming for your user
 echo ==========================================================================
 echo
-ssh -v -T [email protected] 2>&1 | grep Roaming
+ssh -v -T -o StrictHostKeyChecking=no [email protected] 2>&1 | grep Roaming
 if [ $? == '0' ]
 then
 cat <<EOM >>~/.ssh/config 
@@ -14,7 +14,7 @@ host *
   UseRoaming no
 EOM
 fi
-ssh -v -T [email protected] 2>&1 | grep Roaming
+ssh -v -T -o StrictHostKeyChecking=no [email protected] 2>&1 | grep Roaming
 if [ $? == '0' ]
 then
   osascript -e 'display notification "I was unable to fix your vulnerability - please notify operations"'

diff --git a/disableRoaming.command b/disableRoaming.command
@@ -0,0 +1,25 @@
+#!/bin/bash
+echo ==========================================================================
+echo  This will disable openSSH roaming for your user
+echo ==========================================================================
+echo
+ssh -v -T [email protected] 2>&1 | grep Roaming
+if [ $? == '0' ]
+then
+cat <<EOM >>~/.ssh/config 
+#
+# disable openSSH roaming to protect against CVE-2016-0777
+#
+host *
+  UseRoaming no
+EOM
+fi
+ssh -v -T [email protected] 2>&1 | grep Roaming
+if [ $? == '0' ]
+then
+  osascript -e 'display notification "I was unable to fix your vulnerability - please notify operations"'
+  echo "I was unable to fix your vulnerability - please notify operations"
+else
+  osascript -e 'display notification "You are no longer vulnerable"'
+  echo "You are no longer vulnerable"
+fi