- Update to version 2.3.1
* Now parses public key sizes for
rsa-sha2-256-cert-v01@openssh.com and
rsa-sha2-512-cert-v01@openssh.com host key types.
* Flag ssh-rsa-cert-v01@openssh.com as a failure due to SHA-1
hash.
* Fixed bug in recommendation output which suppressed some
algorithms inappropriately.
* Built-in policies now include CA key requirements (if
certificates are in use).
* Lookup function (--lookup) now performs case-insensitive
lookups of similar algorithms.
* Migrated pre-made policies from external files to internal
database.
* Split single 3,500 line script into many files (by class).
* Added setup.py support
* Added 1 new cipher: des-cbc@ssh.com.
- Install manpage
- Use py-* rpm macros
- Update to version 2.3.0
The highlight of this release is support for policy scanning
(this allows an admin to test a server against a
hardened/standard configuration).
* Added new policy auditing functionality to test adherence to
a hardening guide/standard configuration
(see -L/--list-policies, -M/--make-policy and -P/--policy).
* Created new man page (see ssh-audit.1 file).
* 1024-bit moduli upgraded from warnings to failures.
* Many Python 2 code clean-ups, testing framework improvements,
OBS-URL: https://build.opensuse.org/request/show/845092
OBS-URL: https://build.opensuse.org/package/show/security/ssh-audit?expand=0&rev=5
