Christian Lawson-Perfect @christianp

3 posts3 participants0 posts today

**Le Journal du hacker** @journalduhacker@framapiaf.org · 2d

Le Journal du hacker @journalduhacker@framapiaf.org

SSH over Openssl over Haproxy - - contourner les blocages https://www.journalduhacker.net/s/mnw1al/ssh_over_openssl_over_haproxy_contourner https://blog.victor-hery.com/2024/02/ssh-openssl-haproxy.html #hébergement #openssh

www.journalduhacker.netSSH over Openssl over Haproxy - - contourner les blocages | Journal du hacker

**Neustradamus :xmpp: :linux:** @neustradamus@mastodon.social · 4d

Neustradamus :xmpp: :linux: @neustradamus@mastodon.social

#OpenSSH 10.0 has been released (#SSH / #SecureShell / #OpenBSD) https://openssh.com/

openssh.comOpenSSHthe main OpenSSH page

**Rihards Olups** @richlv@mastodon.social · 4d

Rihards Olups @richlv@mastodon.social

Neat, OpenSSH client adds variable expansion in "User".
This will allow for much simpler PAM (the privileged access management one) related configuration - for example, expanding user into user%original_hostname etc.

https://github.com/openssh/openssh-portable/commit/bd30cf784d6e825ef71592fb723c41d4f2fd407b

with the exception of %r and %C which are self-referential. Requested in
bz#3477, ok djm@, man page improvements jmc@

OpenBSD-Commit-ID: caeb46251ee073662f6f5864c6f7b92d8ac80fa8

GitHubupstream: Allow %-token and environment variable expansion in User, · openssh/openssh-portable@bd30cf7with the exception of %r and %C which are self-referential. Requested in bz#3477, ok djm@, man page improvements jmc@ OpenBSD-Commit-ID: caeb46251ee073662f6f5864c6f7b92d8ac80fa8

#OpenSSH #SSH #security

**jcea** @jcea@mastodon.green · Apr 15

Apr 15

jcea @jcea@mastodon.green

Elegir la identidad SSH que presenta un cliente al servidor

https://blog.jcea.es/posts/20231203-identidad_ssh.html

El hilo del laberinto · Dec 3, 2023Elegir la identidad SSH que presenta un cliente al servidorCuando un cliente se conecta a un servidor SSH, normalmente le propondrá todas las identidades SSH presentes en el servicio SSH Agent. Esto no está necesariamente mal, pero tiene algunos problemas: E

#OpenSSH

**unixbhaskar** @unixbhaskar@mastodon.social · Apr 13

Apr 13

unixbhaskar @unixbhaskar@mastodon.social

Heads up! Kiddos...measure...

#linuxadmin #opensource #tool #openssh

https://www.openssh.com/releasenotes.html#10.0p1

www.openssh.comOpenSSH: Release NotesOpenSSH release notes

**Maquinari.cat** @maquinari_cat@mastodon.social · Apr 12

Apr 12

Maquinari.cat @maquinari_cat@mastodon.social

OpenSSH arriba a la versió 10.0. Entre d'altres, inclou l'algoritme mlkem768x25519-sha256, que diuen és a prova d'ordinadors quàntics.

https://www.phoronix.com/news/OpenSSH-10.0-Released

#OpenSSH #Quàntic #mlkem768x25519-sha256

www.phoronix.comOpenSSH 10.0 Released To Better Fend Off Attacks By Quantum Computers

**Ben S.** @HunterZ@mastodon.sdf.org · Apr 11

Apr 11

Ben S. @HunterZ@mastodon.sdf.org

In case anyone is wondering why #ssh (#openssh) is failing silently on #msys2 - seems they pushed out a version that depends on an msys2 runtime version that's stuck in some kind of release queue: https://github.com/msys2/MSYS2-packages/issues/5320

Description / Steps to reproduce the issue write ssh get error 127 not found setproctitle symbol couldn t be found in dll /usr/bin/ssh this was done after the latest update... it used to work. Expe...

GitHub/usr/bin/ssh can't find the symbol setproctitle · Issue #5320 · msys2/MSYS2-packagesBy Kreijstal

**Alejandro Baez** @zeab@fosstodon.org · Apr 11

Apr 11

Alejandro Baez @zeab@fosstodon.org

#openssh now defaults to #mlkem768x25519 algorithm for keys. In other words, welcome to quantum resistance being a thing.

Congrats to the team on this release!

https://www.openssh.com/txt/release-10.0

**Portada Hardlimit** @portada_hl@social.hardlimit.com · Apr 11

Apr 11

Portada Hardlimit @portada_hl@social.hardlimit.com

La décima versión de OpenSSH viene con el algoritmo mlkem768xto25519-sha256 activado por defecto, que se considera seguro ante ataques con ordenadores cuánticos y además se ha convertido en norma en el NIST #openssh -> https://hardlimit.com/archivo.php?n=2286

hardlimit.comPrimera página | Portada HardlimitToda la actualidad del hardware y el software. Visita nuestros foros y comprueba el rendimiento de tu procesador con nuestro banco de pruebas.

**Jeff Forcier** @bitprophet@social.coop · Apr 10

Apr 10

Jeff Forcier @bitprophet@social.coop

I see #OpenSSH got to fully removing DSA key support, so that means my “probably do that in #Paramiko” todo list item has no more excuses

Well, ok, it still has a few excuses (will be years before the average sshd is OpenSSH 10.0+) but still. Needs happenin' sometime and it ain't like old releases go away, so.

**nixCraft** @nixCraft@mastodon.social · Apr 10

Apr 10

nixCraft @nixCraft@mastodon.social

OpenSSH 10.0/10.0p2 released https://www.openssh.com/releasenotes.html#10.0p1

www.openssh.comOpenSSH: Release NotesOpenSSH release notes

#unix #openssh #linux

Continued thread

**Parade du Grotesque** @ParadeGrotesque@mastodon.sdf.org · Apr 10 *

Apr 10 *

Parade du Grotesque @ParadeGrotesque@mastodon.sdf.org

Also: #Slackware 15 has a security update for Python3:

http://www.slackware.com/security/viewer.php?l=slackware-security&y=2025&m=slackware-security.326755

Slackware-current just adopted #OpenSSH 10.0.p1 & #OpenSSL 3.5

n/openssh-10.0p1-x86_64-1.txz: Upgraded. Potentially-incompatible changes include the removal of the weak DSA signature algorithm, completing the deprecation process that began in 2015 (when DSA was disabled by default) and repeatedly warned over the last 12 months.

n/openssl-3.5.0-x86_64-1.txz: Upgraded. New LTS release, supported until 08 Apr 2030.

www.slackware.comThe Slackware Linux Project: Slackware Security Advisories

**Edwin G.** @EdwinG@mstdn.moimeme.ca · Apr 10

Apr 10

Edwin G. @EdwinG@mstdn.moimeme.ca

Portable OpenSSH 10.0p1 will not exist. It will be known as OpenSSH 10.0p2.

https://lists.mindrot.org/pipermail/openssh-unix-announce/2025-April/000163.html
- - -
OpenSSH portable 10.0p1 n’existera pas. Ce sera connue comme OpenSSH 10.0p2.

// Publication en anglais //

lists.mindrot.org[openssh-unix-announce] Announce: OpenSSH 10.0 released

#OpenSSH #SSH

**Senioradmin** @Haydar@social.tchncs.de · Apr 10 *

Apr 10 *

Senioradmin @Haydar@social.tchncs.de

#OpenSSH 9.8 und höher kommt allmählich auf die Server. Da wird die Option PerSourcePenalties interessant (siehe https://undeadly.org/cgi?action=article;sid=20240607042157 ) die fail2ban u.ä. überflüssig machen könnte.

Konfig-Beispiele sind aber noch rar gesät. Nach der manpage zu urteilen, sollte aber

PerSourcePenalties authfail:3600s

dafür sorgen dass IPs, die Brute-Force Attacken fahren für 1 Stunde geblockt werden, korrekt?

undeadly.orgOpenSSH introduces options to penalize undesirable behavior

#SSH

**Peter N. M. Hansteen** @pitrh@mastodon.social · Apr 10

Apr 10

Peter N. M. Hansteen @pitrh@mastodon.social

OpenSSH 10.0 Released https://www.undeadly.org/cgi?action=article;sid=20250410053152 #openbsd #openssh #ssh #security #networking #development #newrelease #devops #sysadmin #freesoftware #libresoftware

www.undeadly.orgOpenSSH 10.0 Released

**ティージェーグレェ** @teajaygrey@snac.bsd.cafe · Apr 10 *

Apr 10 *

ティージェーグレェ @teajaygrey@snac.bsd.cafe

Ooph, updated the sshd-session.c patch that MacPorts uses (to try to sandbox things, whoever did that was before my time) and while the patch I modified applies OK, the OpenSSH 10.0p1 build still fails with MacPorts' additional "special sauce".

I updated the Trac issue with as far as I got here:

https://trac.macports.org/ticket/72317

But I need to step AFK for a while and won't be able to look at this again for several hours.

If others want to take a crack at it and fix whatever I failed to get correct, contributions are more than welcome!

Thanks!

(and here I was thinking the legacy_dsa variant removal would be my potential stumbling block. Nope! sigh I should have tested the snapshot more thoroughly I guess, but I still don't have a functional mpbb locally and I don't even want to get into my "methodology" for diffing this stuff locally, it's basically line by line with not such great tools.)

Near as I can discern sshd-session.c got reworked a bit since 9.9p2 and my shoot from the hip attempt is insufficient.

#OpenSSH #MacPorts

trac.macports.org#72317 (update OpenSSH 10.0p1) – MacPorts

**RenézuCode** @ReneRebe@chaos.social · Apr 9

Apr 9

RenézuCode @ReneRebe@chaos.social

#OpenSSH 10.0 Released with Major #Security and #Performance Upgrades https://medium.com/p/openssh-10-0-released-with-major-security-and-performance-upgrades-f7d61012b96e?source=social.tw

Medium · Apr 9OpenSSH 10.0 Released with Major Security and Performance UpgradesBy René Rebe's IT News

**r1w1s1** @r1w1s1@snac.bsd.cafe · Apr 9

Apr 9

r1w1s1 @r1w1s1@snac.bsd.cafe

OpenSSH 10.0 is out!

One of the most critical tools in any Unix admin’s toolbox just got even better.

Release notes: https://www.openssh.com/releasenotes.html#10.0p1

Huge thanks to the OpenSSH devs for keeping the Internet safer with every release.

#openssh #linux #openbsd #bsd

www.openssh.comOpenSSH: Release NotesOpenSSH release notes

**Raven** @raven@bsd.cafe · Apr 9

Apr 9

Raven @raven@bsd.cafe

OpenSSH 10.0 released with hybrid post-quantum algorithm mlkem768x25519-sha256 as default key agreement, new cipher preference list, new options, bug fixes

https://www.openssh.com/releasenotes.html

www.openssh.comOpenSSH: Release NotesOpenSSH release notes

#openssh #openbsd #infosec

**LavX News** @lavxnews@mastodon.cloud · Apr 9

Apr 9

LavX News @lavxnews@mastodon.cloud

OpenSSH 10.0: A Leap Forward in Secure Shell Technology

The release of OpenSSH 10.0 introduces significant enhancements in security and functionality, solidifying its status as a cornerstone of secure communications in the tech industry. With new features ...

https://news.lavx.hu/article/openssh-10-0-a-leap-forward-in-secure-shell-technology

#news #tech #OpenSSH

Recent searches

Search options

Administered by:

Server stats:

#openssh

Recent searches

Search options

Administered by:

Server stats:

openSSH

#openssh