Skip to content

v2.5.0
Compare
Choose a tag to compare
@jtesta jtesta released this 26 Aug 19:46
· 214 commits to master since this release
v2.5.0
This tag was signed with the committer’s verified signature.
jtesta Joe Testa
GPG key ID: E44F5FD3B799916A
Learn about vigilant mode.
4f2f995

This release fixes some minor bugs, and adds some minor features.

Please note that this version is also available as a PyPI package (pip3 install ssh-audit), Snap package (snap install ssh-audit), or as a Windows executable (below, though be aware that Windows Defender inappropriately detects it as malware!).

The full change log is:

  • Fixed crash when running host key tests.
  • Handles server connection failures more gracefully.
  • Now prints JSON with indents when -jj is used (useful for debugging).
  • Added MD5 fingerprints to verbose output.
  • Added -d/--debug option for getting debugging output; credit Adam Russell.
  • Updated JSON output to include MD5 fingerprints. Note that this results in a breaking change in the 'fingerprints' dictionary format.
  • Updated OpenSSH 8.1 (and earlier) policies to include rsa-sha2-512 and rsa-sha2-256.
  • Added OpenSSH v8.6 & v8.7 policies.
  • Added 3 new key exchanges: gss-gex-sha1-eipGX3TCiQSrx573bT1o1Q==, gss-group1-sha1-eipGX3TCiQSrx573bT1o1Q==, and gss-group14-sha1-eipGX3TCiQSrx573bT1o1Q==.
  • Added 3 new MACs: hmac-ripemd160-96, AEAD_AES_128_GCM, and AEAD_AES_256_GCM.
Assets 7
Loading