OpenSSH version 8.2 is out and the big news is that the world’s most popular remote management software now supports authentication using any FIDO (Fast Identity Online) U2F hardware token.
Tag Archives: openssh
Serious Security: Rambleed attacks blunted – the OpenSSH way
Here’s a way to keep secrets safe in memory, even in a world of hardware-level leakage due to tricks like Rambleed, Spectre and more.
Vulnerability in OpenSSH “for two decades” (no, the sky isn’t falling!)
An OpenSSH bug that was reclassified as a vulnerability after it was fixed has made scary headlines – but the sky isn’t falling
OpenSSH password guessing attacks may be 10,000 times easier than you thought
An interesting problem with OpenSSH has been publicised on the Full Disclosure mailing list.