Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Recognize curve25519-sha256 in addition to [email protected] #39

Open
jauderho opened this issue Nov 23, 2018 · 2 comments
Open

Recognize curve25519-sha256 in addition to [email protected] #39

jauderho opened this issue Nov 23, 2018 · 2 comments

Comments

@jauderho
Copy link

Using the git version of ssh-audit, curve25519-sha256 is currently flagged as an unknown algorithm whereas [email protected] is correctly identified.

Looking at the sshd_config man page for OpenSSH 7.6p1, both are valid for KexAlgorithms. The default sequence is listed as

curve25519-sha256,[email protected],
ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,
diffie-hellman-group-exchange-sha256,
diffie-hellman-group14-sha1

Some software such as SecureCRT 8.5.2 require the usage of curve25519-sha256 instead of [email protected]

@vgrebenschikov
Copy link

I'll also vote for that

@jtesta
Copy link

jtesta commented Aug 29, 2019

@jauderho @vgrebenschikov

I forked this project and continued development. This feature is implemented in v2.0.0: https://github.com/jtesta/ssh-audit/releases/tag/v2.0.0

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

3 participants