Joe Testa
Joe Testa
Currently, the `-m` argument only shows the man page on Windows builds. This should be modified to also work with the PyPI, Snap, and Docker builds.
Currently, snap builds are only created for amd64. They should also be made for arm64 and armv7.
Currently, policies will fail if exact key sizes do not match (for example, if a policy states that 3072-bit host RSA keys are needed, but the host is using 4096,...
As noted in #211, it would be great if we could implement the DHEater testing into ssh-audit. The deciding factor would be whether or not it could be accomplished without...
Codon (https://github.com/exaloop/codon) aims to be "a high-performance and zero-overhead" Python compiler. Currently, we use PyInstaller (https://pyinstaller.org/) to create Windows builds, which adds noticeable sluggishness, as well as occasional anti-virus false...
The Windows build should be tested in Github Actions. Extensive tests are already done with Tox and Docker (by running `tox` and `./docker_test.sh`, respectively), but it would be nice to...
The following tests should be added to the Docker test suite: 1. Client standard & policy audits 2. RSA 2048-bit warnings 3. Mixed host key/CA key certificates (i.e.: ED25519 host...
By default, Docker runs containers with root privileges (!). This isn't necessary for shellcheck. This PR causes the container to be run as an unprivileged user instead. FYI, the highest...
According to the release notes for OpenSSH 8.0 (https://www.openssh.com/releasenotes.html), a new quantum-resistant key exchange algorithm was implemented: ``` * ssh(1), sshd(8): Add experimental quantum-computing resistant key exchange method, based on...