elie/ssh-audit
1
0
Fork 0
mirror of https://github.com/jtesta/ssh-audit.git synced 2025-06-24 03:24:32 +02:00
Code Issues Packages Projects Releases Wiki Activity

Flag 'ssh-rsa-cert-v01@openssh.com' as unsafe due to SHA-1 hash.

Browse Source
This commit is contained in:
Joe Testa
2020-10-20 17:39:34 -04:00
parent ec48249deb
commit 619efc7349
3 changed files with 3 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
README.md
View File

@ -158,6 +158,7 @@ For convenience, a web front-end on top of the command-line tool is available at
## ChangeLog
### v2.3.1-dev (???)
- Flag `ssh-rsa-cert-v01@openssh.com` as a failure due to SHA-1 hash.
- Now parses public key sizes for `rsa-sha2-256-cert-v01@openssh.com` and `rsa-sha2-512-cert-v01@openssh.com` host key types.
- Built-in policies now include CA key requirements (if certificates are in use).
- Migrated pre-made policies from external files to internal database.