rpm/ssh-audit
SHA256
1
0
Fork 0
forked from pool/ssh-audit
Code Pull Requests Activity

Compare commits

base: rpm:factory
Branches Tags
rpm:factory pool:factory pool:leap-16.0 pool:leap-16.1
..
compare: pool:leap-16.1
Branches Tags
pool:factory pool:leap-16.0 pool:leap-16.1 rpm:factory

2 Commits
factory ... leap-16.1

Author SHA256 Message Date
Ana Guerrero
18ac69ae26 Accepting request 1208469 from security 
OBS-URL: https://build.opensuse.org/request/show/1208469
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/ssh-audit?expand=0&rev=10
 2024-10-16 21:54:15 +00:00
Martin Hauke
2beab63d70 - Update to version 3.3.0 
* Added Python 3.13 support.
  * Added built-in policies for Ubuntu 24.04 LTS server & client,
    OpenSSH 9.8, and OpenSSH 9.9.
  * Added IPv6 support for DHEat and connection rate tests.
  * Added TCP port information to JSON policy scan results.
  * Added LANcom LCOS server recognition and Ed448 key extraction
  * Now reports ECDSA and DSS fingerprints when in verbose mode.
  * Removed CVE information based on server/client version numbers,
    as this was wildly inaccurate (see this thread for the full
    discussion, as well as the results of the community vote on
    this matter).
  * Fixed crash when running with -P and -T options simultaneously.
  * Fixed host key tests from only reporting a key type at most
    once despite multiple hosts supporting it.
  * Fixed invalid JSON output when a socket error occurs while
    performing a client audit.
  * When scanning multiple targets (using -T/--targets),
    the -p/--port option will now be used as the default port
    (set to 22 if -p/--port is not given). Hosts specified in the
    file can override this default with an explicit port number
    (i.e.: "host1:1234"). For example, when using -T targets.txt
    -p 222, all hosts in targets.txt that do not explicitly include
    a port number will default to 222; when using -T targets.txt
    (without -p), all hosts will use a default of 22.
  * Updated built-in server & client policies for
    Amazon Linux 2023, Debian 12, Rocky Linux 9, and Ubuntu 22.04
    to improve host key efficiency and cipher resistance to quantum
    attacks.
  * Added 1 new cipher: grasshopper-ctr128.

OBS-URL: https://build.opensuse.org/package/show/security/ssh-audit?expand=0&rev=19
 2024-10-16 15:06:43 +00:00
6 changed files with 40 additions and 4 deletions
Expand all files Collapse all files

3
ssh-audit-3.2.0.tar.gz
View File

@@ -1,3 +0,0 @@
version https://git-lfs.github.com/spec/v1
oid sha256:db21007cb84ac95fa899bdb8f35bb4102a9fd28fc8225c5d16ced4ab8aa0413b
size 175715

BIN
ssh-audit-3.2.0.tar.gz.sig
View File

Binary file not shown.

3
ssh-audit-3.3.0.tar.gz Normal file
View File

@@ -0,0 +1,3 @@
version https://git-lfs.github.com/spec/v1
oid sha256:e533c9ff2c1e655576b78a7732cdb01cf765e002716e5c086322ba4737c5e63b
size 172808

BIN
ssh-audit-3.3.0.tar.gz.sig Normal file
View File

Binary file not shown.

36
ssh-audit.changes
View File

@@ -1,3 +1,39 @@
-------------------------------------------------------------------
Tue Oct 15 20:29:22 UTC 2024 - Martin Hauke <mardnh@gmx.de>
- Update to version 3.3.0
* Added Python 3.13 support.
* Added built-in policies for Ubuntu 24.04 LTS server & client,
OpenSSH 9.8, and OpenSSH 9.9.
* Added IPv6 support for DHEat and connection rate tests.
* Added TCP port information to JSON policy scan results.
* Added LANcom LCOS server recognition and Ed448 key extraction
* Now reports ECDSA and DSS fingerprints when in verbose mode.
* Removed CVE information based on server/client version numbers,
as this was wildly inaccurate (see this thread for the full
discussion, as well as the results of the community vote on
this matter).
* Fixed crash when running with -P and -T options simultaneously.
* Fixed host key tests from only reporting a key type at most
once despite multiple hosts supporting it.
* Fixed invalid JSON output when a socket error occurs while
performing a client audit.
* When scanning multiple targets (using -T/--targets),
the -p/--port option will now be used as the default port
(set to 22 if -p/--port is not given). Hosts specified in the
file can override this default with an explicit port number
(i.e.: "host1:1234"). For example, when using -T targets.txt
-p 222, all hosts in targets.txt that do not explicitly include
a port number will default to 222; when using -T targets.txt
(without -p), all hosts will use a default of 22.
* Updated built-in server & client policies for
Amazon Linux 2023, Debian 12, Rocky Linux 9, and Ubuntu 22.04
to improve host key efficiency and cipher resistance to quantum
attacks.
* Added 1 new cipher: grasshopper-ctr128.
* Added 2 new key exchanges: mlkem768x25519-sha256,
sntrup761x25519-sha512.
-------------------------------------------------------------------
Tue Apr 23 06:57:55 UTC 2024 - Martin Hauke <mardnh@gmx.de>

2
ssh-audit.spec
View File

@@ -17,7 +17,7 @@
Name: ssh-audit
Version: 3.2.0
Version: 3.3.0
Release: 0
Summary: SSH server auditing
License: MIT