Security Sauce
Security Sauce
Also noticed "Firmware Bug" on that host. ``` $ dmesg | grep -i tpm [ 0.000000] efi: ACPI=0x6fffe000 ACPI 2.0=0x6fffe014 SMBIOS=0x69359000 SMBIOS 3.0=0x69357000 MEMATTR=0x6520c020 TPMEventLog=0x5020b020 [ 0.000000] [Firmware Bug]: TPM...
Just checking to see if there any update on this issue
Observed this error, so sharing it: " Update Error: UEFI Capsule updates not available or enabled" ``` $ fwupdmgr get-devices PowerEdge R740 │... │ └─System Firmware: Device ID: 123fd4143619569d8ddb6ea47d1d3911eb5ef07a Current...
Thanks @charles-rose. Changing TPM from SHA1 to SHA256 resolve that issue. I can now parse the event log. However when I tried to reconstruct and compare PCRs, I've observed that...
Hi @kylak, tls-scan supports all ciphers supported by openssl. I believe it covers all ciphers (including deprecated ones), but I've not done a comparison with IANA cipher suites list.
seems like you nailed it!
Thanks @Serhatcck. Will fix it shortly.
thanks @sebix for reporting this issue. I will try to get this fixed when I find some free cycles in between.
The major challenge is the old openssl dependency(used for test old ciiphers, tls versions) doesn't appear to be very compatible with the new Apple silicon, so I couldn't make it...
thanks @cipherboy A workaround switching to ed25519 key algorithm is working: ```bash $ ssh-keygen -t ed25519 $ vault write -field=signed_key ssh/sign/test public_key=@$HOME/.ssh/id_ed25519.pub valid_principals=jdoe | ssh-keygen -L -f - (stdin):1: Type:...