mirror of
https://github.com/jtesta/ssh-audit.git
synced 2024-12-23 01:21:07 +01:00
103 lines
2.9 KiB
JSON
103 lines
2.9 KiB
JSON
{
|
|
"additional_notes": [],
|
|
"banner": {
|
|
"comments": "",
|
|
"protocol": "2.0",
|
|
"raw": "",
|
|
"software": "tinyssh_noversion"
|
|
},
|
|
"compression": [
|
|
"none"
|
|
],
|
|
"cves": [],
|
|
"enc": [
|
|
{
|
|
"algorithm": "chacha20-poly1305@openssh.com",
|
|
"notes": {
|
|
"info": [
|
|
"default cipher since OpenSSH 6.9",
|
|
"available since OpenSSH 6.5, Dropbear SSH 2020.79"
|
|
],
|
|
"warn": [
|
|
"vulnerable to the Terrapin attack (CVE-2023-48795), allowing message prefix truncation"
|
|
]
|
|
}
|
|
}
|
|
],
|
|
"fingerprints": [
|
|
{
|
|
"hash": "89ocln1x7KNqnMgWffGoYtD70ksJ4FrH7BMJHa7SrwU",
|
|
"hash_alg": "SHA256",
|
|
"hostkey": "ssh-ed25519"
|
|
},
|
|
{
|
|
"hash": "dd:9c:6d:f9:b0:8c:af:fa:c2:65:81:5d:5d:56:f8:21",
|
|
"hash_alg": "MD5",
|
|
"hostkey": "ssh-ed25519"
|
|
}
|
|
],
|
|
"kex": [
|
|
{
|
|
"algorithm": "curve25519-sha256",
|
|
"notes": {
|
|
"info": [
|
|
"default key exchange from OpenSSH 7.4 to 8.9",
|
|
"available since OpenSSH 7.4, Dropbear SSH 2018.76"
|
|
],
|
|
"warn": [
|
|
"does not provide protection against post-quantum attacks"
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"algorithm": "curve25519-sha256@libssh.org",
|
|
"notes": {
|
|
"info": [
|
|
"default key exchange from OpenSSH 6.5 to 7.3",
|
|
"available since OpenSSH 6.4, Dropbear SSH 2013.62"
|
|
],
|
|
"warn": [
|
|
"does not provide protection against post-quantum attacks"
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"algorithm": "sntrup4591761x25519-sha512@tinyssh.org",
|
|
"notes": {
|
|
"info": [
|
|
"the sntrup4591761 algorithm was withdrawn, as it may not provide strong post-quantum security",
|
|
"available since OpenSSH 8.0"
|
|
],
|
|
"warn": [
|
|
"using experimental algorithm"
|
|
]
|
|
}
|
|
}
|
|
],
|
|
"key": [
|
|
{
|
|
"algorithm": "ssh-ed25519",
|
|
"notes": {
|
|
"info": [
|
|
"available since OpenSSH 6.5, Dropbear SSH 2020.79"
|
|
]
|
|
}
|
|
}
|
|
],
|
|
"mac": [
|
|
{
|
|
"algorithm": "hmac-sha2-256",
|
|
"notes": {
|
|
"info": [
|
|
"available since OpenSSH 5.9, Dropbear SSH 2013.56"
|
|
],
|
|
"warn": [
|
|
"using encrypt-and-MAC mode"
|
|
]
|
|
}
|
|
}
|
|
],
|
|
"recommendations": {},
|
|
"target": "localhost:2222"
|
|
}
|