Collaborate Disseminate
It’s not every day we get to take a good look inside a high-level exploit chain developed by an unnamed APT from the western world. But thanks to some particularly …read more Continue reading This Week in Security: Triangulation, ProxyCommand, and Barracuda
There have recently been several reported security issues with OpenSSH (Terrapin, double-frees, remote execution, X11 forwarding vulnerabilities..). How safe is it for a server to expose OpenSSH (using public key authentication) to the int… Continue reading How safe is it to run an un unpatched, internet-exposed OpenSSH service?
If I have a system where I have 100% control over the client operating system and the server operating system, is there any use case for enabling more than one cipher suite (or any of the options that something like openssl will let you co… Continue reading If I control both sides of a connection, is there any reason to support alternate cipher suites?
Security researchers have discovered a vulnerability (CVE-2023-48795) in the SSH cryptographic network protocol that could allow an attacker to downgrade the connection’s security by truncating the extension negotiation message. The Terrapin atta… Continue reading SSH vulnerability exploitable in Terrapin attacks (CVE-2023-48795)
I’d like to use YubiKey Bio for SSH-logins. I’m wondering how often I have to show my fingerprint for authentication when I start new sessions. What’s the interval? If I start a new session every 5 minutes, do I need to use the key each ti… Continue reading YubiKey Bio for SSH login: Do I have to reauthenticate?
I’ve watched a lot of videos on Shor’s Algorithm and Quantum Computers. Most of these videos say these two things undermine RSA via fast-factoring, but they never really explain how fast-factoring is used to these break things; just very h… Continue reading RSA vs Shor’s Algorithm/Fast Factoring — Server Credentials & MITM
It’s time to strap on our propeller beanies, because we’re going to talk crypto. The short version is that some SSH handshakes can expose enough information for a third party …read more Continue reading This Week in Security: SSH, FTP, and Reptar
This is interesting:
For the first time, researchers have demonstrated that a large portion of cryptographic keys used to protect data in computer-to-server SSH traffic are vulnerable to complete compromise when naturally occurring computational errors occur while the connection is being established.
[…]
The vulnerability occurs when there are errors during the signature generation that takes place when a client and server are establishing a connection. It affects only keys using the RSA cryptographic algorithm, which the researchers found in roughly a third of the SSH signatures they examined. That translates to roughly 1 billion signatures out of the 3.2 billion signatures examined. Of the roughly 1 billion RSA signatures, about one in a million exposed the private key of the host…
The best example, would be the ~/.ssh folder, or the linux keychain.
Why is the ~/.ssh folder considered safe? When researching this, people said that the permissions of the folder would give enough security, since if someone then still ha… Continue reading How do programs store plain-text secrets securely? [duplicate]
I was learning the tool called hydra by attacking my local computer. When I am logged on to my Windows laptop as a local account, I use the following from my raspberry pi :
hydra -l sagar -P pwlist ssh://192.168.1.78 -V – I -f -t 2
It was… Continue reading How does Hydra work on Microsoft Windows accounts on ssh?