Joe Testa
|
d7f8bf3e6d
|
Updated notes on OpenSSH default key exchanges. (#258)
|
2024-03-19 18:24:22 -04:00 |
Joe Testa
|
7b3402b207
|
Added note that sntrup761x25519-sha512@openssh.com is the default OpenSSH kex since version 9.0.
|
2024-03-15 17:24:21 -04:00 |
Joe Testa
|
38f9c21760
|
The color of all notes will be printed in green when the related algorithm is rated good.
|
2023-09-03 19:14:25 -04:00 |
Joe Testa
|
cc9e4fbc4a
|
Generic failure/warning messages replaced with more specific reasons. SHA-1 algorithms now cause failures. CBC mode ciphers are now warnings instead of failures.
|
2023-03-23 21:36:02 -04:00 |
Joe Testa
|
413dea60ae
|
Fixed docker tests affected by previous commit.
|
2023-03-21 14:58:00 -04:00 |
Joe Testa
|
c9dc9a9c10
|
Now issues a warning when 2048-bit moduli are encountered.
|
2023-02-06 16:27:30 -05:00 |
Joe Testa
|
c49a0fb22f
|
Upgraded SHA-1 key signatures from warnings to failures. Added deprecation warning to ssh-rsa-cert-v00@openssh.com, ssh-rsa-cert-v01@openssh.com, x509v3-sign-rsa, and x509v3-ssh-rsa host key types.
|
2021-02-01 19:19:46 -05:00 |
Joe Testa
|
175bd2cf66
|
Fixed recommendation output function from suppressing some algorithms inappropriately.
|
2020-10-20 21:34:34 -04:00 |
Joe Testa
|
d5ef967758
|
Upgraded 1024-bit modulus warning to failure.
|
2020-06-30 22:51:13 -04:00 |
Joe Testa
|
c9a2f2955c
|
Marked host key type 'ssh-rsa' as weak due to practical SHA-1 collisions.
|
2020-02-08 23:56:54 -05:00 |
Joe Testa
|
e62b548677
|
Updated info on curve25519-sha256 kex.
|
2019-10-21 11:50:23 -04:00 |
Joe Testa
|
fd3a1f7d41
|
Added client audit functionality. (#3)
|
2019-09-27 18:14:36 -04:00 |
Joe Testa
|
120f898539
|
Added Dropbear test.
|
2019-08-26 14:45:31 -04:00 |