Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

SSH fingerprint hash #19

Open
ei-ke opened this issue Sep 25, 2019 · 2 comments
Open

SSH fingerprint hash #19

ei-ke opened this issue Sep 25, 2019 · 2 comments
Labels
enhancement New feature or request help wanted Extra attention is needed

Comments

@ei-ke
Copy link

ei-ke commented Sep 25, 2019

Is your feature request related to a problem? Please describe.

When connecting to the server Termbot shows the fingerprint as MD5 which should be considered as deprecated.

Describe the solution you'd like

Let the user choose the prefered hash and maybe switch to SHA256 as default hash.
@dschuermann dschuermann added enhancement New feature or request help wanted Extra attention is needed labels Sep 26, 2019
@D3V1LC0D3R
Copy link

@dschuermann This is actually a bug since MD5 is insecure and doesnt really work with ssh-keygen -l -f anymore.

@D3V1LC0D3R
Copy link

https://threatpost.com/sloth-attacks-up-ante-on-sha-1-md5-deprecation/115807/

It seems that breaking md5 (and SHA1) is in the realm of practicality

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request help wanted Extra attention is needed
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@dschuermann @ei-ke @D3V1LC0D3R