From 113d1de443e816a7f59328271b2bd544c29616c4 Mon Sep 17 00:00:00 2001 From: Joe Testa Date: Sun, 10 Apr 2022 12:16:25 -0400 Subject: [PATCH] Removed experimental warning tag from sntrup761x25519-sha512@openssh.com. --- README.md | 2 ++ src/ssh_audit/ssh2_kexdb.py | 4 ++-- 2 files changed, 4 insertions(+), 2 deletions(-) diff --git a/README.md b/README.md index 683c12a..fbfd24b 100644 --- a/README.md +++ b/README.md @@ -172,6 +172,8 @@ For convenience, a web front-end on top of the command-line tool is available at ## ChangeLog ### v2.6.0-dev + - Removed experimental warning tag from `sntrup761x25519-sha512@openssh.com`. + - Updated CVE database; credit [Alexandre Zanni](https://github.com/noraj). - Added `-g` and `--gex-test` for granular GEX modulus size tests; credit [Adam Russell](https://github.com/thecliguy). - Snap packages now print more user-friendly error messages when permission errors are encountered. - JSON 'target' field now always includes port number; credit [tomatohater1337](https://github.com/tomatohater1337). diff --git a/src/ssh_audit/ssh2_kexdb.py b/src/ssh_audit/ssh2_kexdb.py index 324cd65..96ea0b4 100644 --- a/src/ssh_audit/ssh2_kexdb.py +++ b/src/ssh_audit/ssh2_kexdb.py @@ -1,7 +1,7 @@ """ The MIT License (MIT) - Copyright (C) 2017-2021 Joe Testa (jtesta@positronsecurity.com) + Copyright (C) 2017-2022 Joe Testa (jtesta@positronsecurity.com) Copyright (C) 2017 Andris Raugulis (moo@arthepsy.eu) Permission is hereby granted, free of charge, to any person obtaining a copy @@ -149,7 +149,7 @@ class SSH2_KexDB: # pylint: disable=too-few-public-methods 'rsa1024-sha1': [[], [FAIL_1024BIT_MODULUS], [WARN_HASH_WEAK]], 'rsa2048-sha256': [[]], 'sntrup4591761x25519-sha512@tinyssh.org': [['8.0', '8.4'], [], [WARN_EXPERIMENTAL]], - 'sntrup761x25519-sha512@openssh.com': [['8.5'], [], [WARN_EXPERIMENTAL]], + 'sntrup761x25519-sha512@openssh.com': [['8.5'], [], []], 'kexAlgoCurve25519SHA256': [[]], 'Curve25519SHA256': [[]], 'ext-info-c': [[]], # Extension negotiation (RFC 8308)