mirror of
https://github.com/jtesta/ssh-audit.git
synced 2024-12-22 14:05:22 +01:00
Added note regarding general OpenSSH policies failing against platforms with back-ported features. (#236)
This commit is contained in:
parent
fe65b5df8a
commit
b72f6a420f
@ -814,6 +814,7 @@ def list_policies(out: OutputBuffer) -> None:
|
|||||||
out.fail("Error: no built-in policies found!")
|
out.fail("Error: no built-in policies found!")
|
||||||
else:
|
else:
|
||||||
out.info("\nHint: Use -P and provide the full name of a policy to run a policy scan with.\n")
|
out.info("\nHint: Use -P and provide the full name of a policy to run a policy scan with.\n")
|
||||||
|
out.info("Note: the general OpenSSH policies apply to the official releases only. OS distributions may back-port changes that cause failures (for example, Debian 11 back-ported the strict KEX mode into their package of OpenSSH v8.4, whereas it was only officially added to OpenSSH v9.6 and later). In these cases, consider creating a custom policy (-M option).\n")
|
||||||
out.write()
|
out.write()
|
||||||
|
|
||||||
|
|
||||||
|
Loading…
Reference in New Issue
Block a user