easy-admin issues

Results 5 easy-admin issues

Sort by recently updated

Discontinue ETM

Encrypt then MAC should not be used with ChaChaPoly1305 Source: https://terrapin-attack.com/

SSH: Discontinue use of P256 part of ECDSA

During server algorithm key exchange (KEX) neogitation, The NIST P256 part of ECDSA should be avoided. Instead, recommends ecdh-sha2-nistp521 ecdh-sha2-nistp384 This author leans toward avoidance of P384 as penalty cost...

egberts

SSH: Discontinue use of CBC

During the encryption part of server algorithm negotiation, CBC is to be avoided: use GCM or CTR. The main difference between GCM and CTR is that GCM also provides authentication...

egberts

SSH: Discontinue DH Group 14 in KEX

No details giving.

egberts

SSH Message Authenticator Code (MAC)

Drop down to lower bits within SHA2 remains problematic.

egberts

easy-admin
easy-admin copied to clipboard

Metadata

Discontinue ETM

SSH: Discontinue use of P256 part of ECDSA

SSH: Discontinue use of CBC

SSH: Discontinue DH Group 14 in KEX

SSH Message Authenticator Code (MAC)

← Metadata

Owner

Metadata

easy-admin easy-admin copied to clipboard

Metadata

Discontinue ETM

SSH: Discontinue use of P256 part of ECDSA

SSH: Discontinue use of CBC

SSH: Discontinue DH Group 14 in KEX

SSH Message Authenticator Code (MAC)

← Metadata

Owner

Metadata

easy-admin
easy-admin copied to clipboard