From 2c4fb971cda10fe36e8d3b0f80a860646232ab39 Mon Sep 17 00:00:00 2001 From: Joe Testa Date: Fri, 20 Mar 2020 00:34:04 -0400 Subject: [PATCH] Added 1 new MAC: chacha20-poly1305@openssh.com. --- README.md | 1 + ssh-audit.py | 1 + 2 files changed, 2 insertions(+) diff --git a/README.md b/README.md index 0584b2c..5ffb5df 100644 --- a/README.md +++ b/README.md @@ -72,6 +72,7 @@ $ snap install ssh-audit ### v2.2.1-dev (???) - Added 1 new host key types: `ssh-rsa1`. - Added 1 new ciphers: `blowfish`. + - Added 1 new MACs: `chacha20-poly1305@openssh.com` ### v2.2.0 (2020-03-11) - Marked host key type `ssh-rsa` as weak due to [practical SHA-1 collisions](https://eprint.iacr.org/2020/014.pdf). diff --git a/ssh-audit.py b/ssh-audit.py index 3284213..e4bc63a 100755 --- a/ssh-audit.py +++ b/ssh-audit.py @@ -518,6 +518,7 @@ class SSH2(object): # pylint: disable=too-few-public-methods 'umac-128-etm@openssh.com': [['6.2']], 'aes128-gcm': [[]], 'aes256-gcm': [[]], + 'chacha20-poly1305@openssh.com': [[]], # Despite the @openssh.com tag, this was never shipped as a MAC in OpenSSH (only as a cipher); it is only implemented as a MAC in Syncplify. } } # type: Dict[str, Dict[str, List[List[Optional[str]]]]]