There's a very unfortunate [dead] comment by Intermernet in this thread. Unfortunate because it might be a good solution for someone who administers the affected hardware and wants to remove the backdoor after patching (as per the Workaround section in the OP, "Barracuda Networks offers an expert option that disables the SSH daemon.
For assistance contact the Barracuda Networks Support.")
Note, I have no idea why the user is dead, nor if this solution actually works, but I'm posting Intermernet's post below:
The workaround mentioned involves:
1. Log in to the device and go to the "Advanced" tab on the web GUI.
2. Add "&expert=1" to the end of the URL.
3. Click on the red "Expert" button.
4. Scroll to the bottom and disable remote support.
You will need to reverse this process if you ever actually require the barracuda remote support.
Note, I have no idea why the user is dead, nor if this solution actually works, but I'm posting Intermernet's post below:
The workaround mentioned involves:
1. Log in to the device and go to the "Advanced" tab on the web GUI.
2. Add "&expert=1" to the end of the URL.
3. Click on the red "Expert" button.
4. Scroll to the bottom and disable remote support.
You will need to reverse this process if you ever actually require the barracuda remote support.