ssh-audit v2.0.0 Released
Today marks the release of ssh-audit v2.0.0! This tool audits SSH server configurations and highlights vulnerabilities in the following areas:
- Host key types & sizes
- Key exchange algorithms
- Ciphers
- Message authentication codes (MACs)
It is especially useful since the defaults on many systems are, let’s say… less than ideal.
Here’s example output against an older CentOS 6 machine:
Aside from cloning the GitHub repository, you can obtain ssh-audit from PyPI as well:
$ pip3 install ssh-audit
Collecting ssh-audit
Downloading https://files.pythonhosted.org/packages/15/a8/ab696dcc367b23462b7fddabb1b3ef66f7af38c6095157166a6a1a2cc373/ssh_audit-2.0.0-py3-none-any.whl
Installing collected packages: ssh-audit
Successfully installed ssh-audit
Any feedback on this release is welcome!