spraci.info

Search

Items tagged with: openssh

#webmin is very good at catastrophic holes and exploit (for over a decade now). Just use #openssh instead. The old way.
 
" #DragonFlyBSD Project Update - colo upgrade, future trends, resuming #ZFS send, realtime bandwidth terminal graph visualization, fixing telnet fixes, a chapter from the FBI’s history with #OpenBSD and an #OpenSSH vuln, and more."
Get Your Telnet Fix | BSD Now 309
 
#OpenSSH adds protection against Spectre, Meltdown, #RAMBleed

https://www.helpnetsecurity.com/2019/06/24/openssh-protection-side-channel-attacks/ so many buzzwords. Logos too. Defective chips. Just #recallandreplace them all.
 
RAMBleed: Rowhammer kann auch Daten auslesen - Golem.de
https://www.golem.de/news/rambleed-rowhammer-kann-auch-daten-auslesen-1906-141840.html
#Rowhammer #Datensicherheit #OpenSSH #RAM #SSH #Sicherheitslücke #Applikationen #PC-Hardware #Security
 
Open-Source Technology Summit: Intel will moderne Firmware und Rust-VMM für Server - Golem.de
https://www.golem.de/news/open-source-technology-summit-intel-will-moderne-firmware-und-rust-vmm-fuer-server-1905-141260.html
#Intel #Firmware #OpenSSH #UEFI #Server #Applikationen #OpenSource
 
Introducing #OpenBSD 3.9

http://www.informit.com/articles/article.aspx?p=468055 the project people rely on most for real #security inc. in #openssh
 
OpenBSD 6.5 mit neuem Stack-Protector
https://www.heise.de/ix/meldung/OpenBSD-6-5-mit-neuem-Stack-Protector-4409291.html
#BSD #Betriebssystem #OpenSource #OpenBSD #OpenSSH #Sicherheit #Unix
 
#SCP vs #SFTP : Which One Should You Use for File Transfer https://www.maketecheasier.com/scp-vs-sftp/ both use #encryption but I trust #openssh #openbsd people more
SCP vs SFTP: Which One Should You Use for File Transfer
 
#openssh developers decide that, in the name of security, they'll suppress #scp functionality that has long worked. Wasted so much time before realising it needs -T now.
 
SSHd and AuthorizedKeysCommand https://jpmens.net/2019/03/02/sshd-and-authorizedkeyscommand/ #ssh #openssh
 

Windows Server 2019 Includes OpenSSH


The OpenSSH client and server are now available as a supported Feature-on-Demand in Windows Server 2019 and Windows 10 1809! The Win32 port of OpenSSH was first included in the Windows 10 Fall…

HN Discussion: https://news.ycombinator.com/item?id=18659635
Posted by taspeotis (karma: 5028)
Post stats: Points: 136 - Comments: 59 - 2018-12-11T22:34:37Z

\#HackerNews #2019 #includes #openssh #server #windows
Art... Show more...
 
♲ sheogorath@g0v.social:
Still using RSA for OpenSSH authentication?

You should read: https://latacora.singles/2018/08/03/the-default-openssh.html

tl;dr: OpenSSH uses by default the md5 hash of your password to encrypt the id_rsa private key.

Good news, you can fix it by running this command (with -o it uses the improved key-format):
ssh-keygen -o -p -f ~/.ssh/id_rsa

Or even better, generate a new ed25519 key (they use the improved key-format by default):
ssh-keygen -t ed25519

Thanks @amenthes for pointing me to the article!

#openssh #infosec #linux
[l]
 

OpenSSH user enumeration


Follow us on Twitter [<prev] [next>] [thread-next>] [day]

[month]HN Discussion: https://news.ycombinator.com/item?id=17791572
Posted by hamstah (karma: 290)
Post stats: Points: 84 - Comments: 74 - 2018-08-18T23:49:12Z

\#HackerNews #enumeration #openssh #user
Article content:

Image/photo

[1]Openwall

[2]Follow us on Twitter [3]Bookmark and Share

[4][<prev] [5][next>] [6][thread-next>] [7]... Show more...
 

The default OpenSSH key encryption is worse than plaintext


The eslint-scope npm package got compromised recently, stealing npm credentials from your home directory. We started running tabletop exercises: what else would you smash-and-grab, and how can we…
Article word count: 761

HN Discussion: https://news.ycombinator.com/item?id=17682946
Posted by rargulati (karma: 343)
Post stats: Points: 143 - Comments: 83 - 2018-08-03T19:38:05Z

\#HackerNews #default #encryption #key #openssh... Show more...
 
Roboter: Pepper ist voller Sicherheitslücken - Golem.de
https://www.golem.de/news/roboter-pepper-ist-voller-sicherheitsluecken-1805-134648.html
#Security #Nginx #OpenSSH #Passwort #Server-Applikationen #Sicherheitslücke #TCP #API #Server #Internet
 
#Fedora 28: Better smart card support in #OpenSSH https://fedoramagazine.org/fedora-28-better-smart-card-support-openssh/ #f28 #gnu #linux
Fedora 28: Better smart card support in OpenSSH
 
Kryptographie: Der Debian-Bug im OpenSSL-Zufallszahlengenerator - Golem.de
https://www.golem.de/news/kryptographie-der-debian-bug-im-openssl-zufallszahlengenerator-1805-134355.html
#Debian #LetsEncrypt #OpenSSH #OpenSSL #SSL #Sicherheitslücke #TLS #Verschlüsselung #Technologie #Internet
 
When computer users in 2018 don't just install stuff like #openssh #ssh #scp etc.
 
"If a penny was donated for every pf or OpenSSH
installed with a mainstream operating system or
phone in the last year we would be at our goal. "
https://www.openbsdfoundation.org/campaign2018.html #openssh #openbsd #bsd #unix
 
Later posts Earlier posts