Mastodon

Daniel Wayne ArmstrongDisable password logins on the SERVER in favour of using SSH keys for authentication. Create the necessary SSH keys on a NetBSD CLIENT that will be used to secure access to remote devices:<a href="https://www.dwarmstrong.org/netbsd-ssh-keys/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.dwarmstrong.org/netbsd-ssh-keys/</a><a href="https://fosstodon.org/tags/SSH" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SSH</a> <a href="https://fosstodon.org/tags/NetBSD" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#NetBSD</a> <a href="https://fosstodon.org/tags/RunBSD" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#RunBSD</a> <a href="https://fosstodon.org/tags/Encryption" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Encryption</a>

Alexandre Dulaunoywe talk about ssh with <a href="https://infosec.exchange/@jtk" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@jtk</a> and bam there is this<a href="https://vulnerability.circl.lu/vuln/CVE-2025-32433#sightings" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://vulnerability.circl.lu/vuln/CVE-2025-32433#sightings</a>“SSH server (Erlang) may allow an attacker to perform unauthenticated remote code execution (RCE).”We should be careful when we talk.<a href="https://infosec.exchange/tags/vulnerability" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#vulnerability</a> <a href="https://infosec.exchange/tags/ssh" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ssh</a> <a href="https://infosec.exchange/tags/erlang" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#erlang</a>

xyhhx 🔻 (plz hire me)in a totally unsurprising turn of events, working on software for my onlykey is forcing me to learn lots of details about pgp/gpg, ssh, their agents, and all the fido2/ctap stuffit's cool though<a href="https://nso.group/tags/onlyKey" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#onlyKey</a> <a href="https://nso.group/tags/GPG" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#GPG</a> <a href="https://nso.group/tags/SSH" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SSH</a> <a href="https://nso.group/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://nso.group/tags/cryptography" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cryptography</a>

Royce WilliamsCall for volunteer data:Looking for real sets of hash-protected ssh <code>~/.ssh/known_hosts</code> files/records, to tune cracking attack stacks on. The bigger the better.Requirements: the cipher type and the fingerprint are not needed -- just need the hash and salt (first couple of base64 fields). Individual cracks won't be published. If you want your own cracks, strong proof of ownership required. DM me!<a href="https://infosec.exchange/tags/ssh" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ssh</a> <a href="https://infosec.exchange/tags/HashCracking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#HashCracking</a>

Marcus Rohrmoser 🌻📄 <a href="https://digitalcourage.social/tags/Permacomputing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Permacomputing</a> Praxis: Website Monitoring | MRo Blog <a href="https://blog.mro.name/2025/04/permacomputing-praxis-website-monitoring/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://blog.mro.name/2025/04/permacomputing-praxis-website-monitoring/</a> <a href="https://digitalcourage.social/tags/HTTP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#HTTP</a> <a href="https://digitalcourage.social/tags/Monitor" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Monitor</a> <a href="https://digitalcourage.social/tags/curl" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#curl</a> <a href="https://digitalcourage.social/tags/cron" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cron</a> <a href="https://digitalcourage.social/tags/ssh" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ssh</a> <a href="https://digitalcourage.social/tags/konvivial" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#konvivial</a> ¹ <a href="https://mro.name/b5527a7" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://mro.name/b5527a7</a>

BillieI have an old <a href="https://social.tchncs.de/tags/asus" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#asus</a> where the <a href="https://social.tchncs.de/tags/pciex16" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#pciex16</a> obviously died. Any graphics card I put into the <a href="https://social.tchncs.de/tags/pciex16" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#pciex16</a> slot makes it crash and prevents it from booting. I also do not get any graphics output at all at boot.However, I can access the pc <a href="https://social.tchncs.de/tags/headless" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#headless</a> via <a href="https://social.tchncs.de/tags/ssh" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ssh</a> . It has <a href="https://social.tchncs.de/tags/ubuntu" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ubuntu</a> server installed.Is there any chance to connect this to any modern monitor having D-SUB, so that I can at least access the <a href="https://social.tchncs.de/tags/bios" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#bios</a> or set up something non-headless ?It has a 350 W power supply, so that is probably not the issue.

Imogen<a href="https://mstdn.social/tags/Technology" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Technology</a> <a href="https://mstdn.social/tags/Computers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Computers</a> <a href="https://mstdn.social/tags/UNIX" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#UNIX</a> <a href="https://mstdn.social/tags/Linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Linux</a> <a href="https://mstdn.social/tags/SSH" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SSH</a> Have you upgraded to OpenSSH 10?

tundaEingefrohrende SSH-Sessions kann man durch das Drücken von "Enter, Tilde und Punkt" beenden. <a href="https://layer8.space/tags/ssh" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ssh</a>

Ben S.In case anyone is wondering why <a href="https://mastodon.sdf.org/tags/ssh" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ssh</a> (<a href="https://mastodon.sdf.org/tags/openssh" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#openssh</a>) is failing silently on <a href="https://mastodon.sdf.org/tags/msys2" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#msys2</a> - seems they pushed out a version that depends on an msys2 runtime version that's stuck in some kind of release queue: <a href="https://github.com/msys2/MSYS2-packages/issues/5320" rel="nofollow noopener noreferrer" target="_blank">https://github.com/msys2/MSYS2-packages/issues/5320</a>

Iain CuthbertsonFor your personal system hopping and coding - how many <a href="https://mendeddrum.org/tags/SSH" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SSH</a> keys do you use?

Edwin G. :mapleleafroundel:Portable OpenSSH 10.0p1 will not exist. It will be known as OpenSSH 10.0p2.<a href="https://lists.mindrot.org/pipermail/openssh-unix-announce/2025-April/000163.html" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://lists.mindrot.org/pipermail/openssh-unix-announce/2025-April/000163.html</a> - - - OpenSSH portable 10.0p1 n’existera pas. Ce sera connue comme OpenSSH 10.0p2. // Publication en anglais //<a href="https://mstdn.moimeme.ca/tags/OpenSSH" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSSH</a> <a href="https://mstdn.moimeme.ca/tags/SSH" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SSH</a>

Senioradmin<a href="https://social.tchncs.de/tags/OpenSSH" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSSH</a> 9.8 und höher kommt allmählich auf die Server. Da wird die Option PerSourcePenalties interessant (siehe <a href="https://undeadly.org/cgi?action=article;sid=20240607042157" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://undeadly.org/cgi?action=article;sid=20240607042157</a> ) die fail2ban u.ä. überflüssig machen könnte.Konfig-Beispiele sind aber noch rar gesät. Nach der manpage zu urteilen, sollte aber PerSourcePenalties authfail:3600sdafür sorgen dass IPs, die Brute-Force Attacken fahren für 1 Stunde geblockt werden, korrekt? <a href="https://social.tchncs.de/tags/SSH" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SSH</a>

Peter N. M. HansteenOpenSSH 10.0 Released <a href="https://www.undeadly.org/cgi?action=article;sid=20250410053152" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.undeadly.org/cgi?action=article;sid=20250410053152</a> <a href="https://mastodon.social/tags/openbsd" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#openbsd</a> <a href="https://mastodon.social/tags/openssh" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#openssh</a> <a href="https://mastodon.social/tags/ssh" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ssh</a> <a href="https://mastodon.social/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://mastodon.social/tags/networking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#networking</a> <a href="https://mastodon.social/tags/development" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#development</a> <a href="https://mastodon.social/tags/newrelease" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#newrelease</a> <a href="https://mastodon.social/tags/devops" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#devops</a> <a href="https://mastodon.social/tags/sysadmin" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#sysadmin</a> <a href="https://mastodon.social/tags/freesoftware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#freesoftware</a> <a href="https://mastodon.social/tags/libresoftware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#libresoftware</a>

OpenBSD Now!Alert when users log in from new locations <a href="https://github.com/mricon/howler" rel="nofollow noopener noreferrer" target="_blank">https://github.com/mricon/howler</a><a href="https://bsd.network/tags/ssh" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ssh</a> <a href="https://bsd.network/tags/sec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#sec</a>

LinuxiacOpenSSH 10 is out now, featuring stronger cryptographic defaults, new post-quantum key exchange, and key security improvements across the board. <a href="https://linuxiac.com/openssh-10-released-makes-bold-cryptographic-changes/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://linuxiac.com/openssh-10-released-makes-bold-cryptographic-changes/</a><a href="https://mastodon.social/tags/ssh" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ssh</a> <a href="https://mastodon.social/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://mastodon.social/tags/opensource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#opensource</a>

heise online EnglishOpenSSH 10 relies on standards for quantum-safe key exchangeThe DSA algorithm, which has been discontinued for years, is now disappearing completely from the secure remote shell, to be replaced by MLKEM768.<a href="https://www.heise.de/en/news/OpenSSH-10-relies-on-standards-for-quantum-safe-key-exchange-10346176.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.heise.de/en/news/OpenSSH-10-relies-on-standards-for-quantum-safe-key-exchange-10346176.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon</a><a href="https://social.heise.de/tags/IT" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#IT</a> <a href="https://social.heise.de/tags/NIST" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#NIST</a> <a href="https://social.heise.de/tags/Verschl%C3%BCsselung" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Verschlüsselung</a> <a href="https://social.heise.de/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Security</a> <a href="https://social.heise.de/tags/SSH" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SSH</a> <a href="https://social.heise.de/tags/news" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#news</a>

heise SecurityOpenSSH 10 setzt auf Standards für quantensicheren SchlüsselaustauschDer seit Jahren abgekündigte DSA-Algorithmus verschwindet nun vollständig aus der sicheren Remote-Shell, seine Nachfolge tritt MLKEM768 an.<a href="https://www.heise.de/news/OpenSSH-10-setzt-auf-Standards-fuer-quantensicheren-Schluesselaustausch-10345975.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.heise.de/news/OpenSSH-10-setzt-auf-Standards-fuer-quantensicheren-Schluesselaustausch-10345975.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon</a><a href="https://social.heise.de/tags/IT" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#IT</a> <a href="https://social.heise.de/tags/NIST" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#NIST</a> <a href="https://social.heise.de/tags/Verschl%C3%BCsselung" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Verschlüsselung</a> <a href="https://social.heise.de/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Security</a> <a href="https://social.heise.de/tags/SSH" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SSH</a> <a href="https://social.heise.de/tags/news" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#news</a>

OliverMe: * opens new browser tab * starts typing " <a href="https://lfnt.site/tags/ssh" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ssh</a> hostname.tld"Oh.. so it's gonna be that kind of a day.. 😂 <a href="https://lfnt.site/tags/sysadmin" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#sysadmin</a>

ax6761Right.I logged onto a remote host from one 'puter with "ssh -J jump-station remote-host".When went to log from another 'puter later, was surprised to find that I would need to supply the credentials for "remote-host" again. "Again" for I am using "Control*" (see "ssh_config(5)" manual page) so was thinking "jump-station" would already have the socket set up for "remote-host".No, those "Control*" sockets are created on local 'puter. So needed to supply the credentials.<a href="https://freeradical.zone/tags/SSH" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SSH</a>

Burak Gürsoypasswordless <a href="https://gursoy.social/tags/ssh" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ssh</a> <a href="https://www.strongdm.com/blog/ssh-passwordless-login" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.strongdm.com/blog/ssh-passwordless-login</a>

Recent searches

Search options

Administered by:

Server stats:

#ssh