github-keygen
openssh-portable
github-keygen | openssh-portable | |
---|---|---|
5 | 50 | |
249 | 3,203 | |
- | 1.8% | |
0.0 | 9.6 | |
almost 2 years ago | about 1 month ago | |
Perl | C | |
GNU General Public License v3.0 only | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
github-keygen
-
I configure my Git identities
Shameless plug for a tool I developed in order to easily manage GitHub identities for Git access via SSH: https://github.com/dolmen/github-keygen
12 years old, but still actively maintained.
-
Organizing Multiple Git Identities
https://github.com/dolmen/github-keygen
The project might not look active, but that's because it just works. 12 years old now.
-
We updated our RSA SSH host key
Disclaimer: I am the author and maintainer of github-keygen
[1]: https://github.com/dolmen/github-keygen/
-
SSH Tips and Tricks
For those who use (or want to use) SSH to connect to GitHub for Git, I wrote 11 years ago a tool to maintain my SSH settings for GitHub. I still actively maintain it.
https://github.com/dolmen/github-keygen/
github-keygen features:
- What was the point of [ “x$var” = “xval” ]?
openssh-portable
-
Debian opens a can of username worms
I wonder how this will affect ssh. OpenSSH recently restricted more characters for valid usernames: https://github.com/openssh/openssh-portable/commit/7ef3787c8...
-
RegreSSHion: RCE in OpenSSH's server, on glibc-based Linux systems
which lacks the #ifdef.
What could have prevented this? More eyes on the pull request? It's wild that software nearly the entire world relies on for secure access is maintained by seemingly just two people [2].
[1] https://github.com/openssh/openssh-portable/commit/752250caabda3dd24635503c4cd689b32a650794
- OpenSSH introduces options to penalize undesirable behavior
- OpenBSD – sshd(8) split into multiple binaries
-
New startup sells coffee through SSH and exclusively through SSH
Default for the last 24 years according to https://github.com/openssh/openssh-portable/blame/385ecb31e1...
-
Systemd Wants to Expand to Include a Sudo Replacement
They didn't need to use the library to make use of the systemd notify mechanism, which is simple to interface and quite a nice feature in the first place.
The free-standing implementation: https://github.com/openssh/openssh-portable/commit/08f579231...
-
Terrapin Attack for prefix injection in SSH
Unless I'm misunderstanding what this is about RFC5647 merely points out that the sequence number is included as AAD due to RFC4253 requirements. The [email protected] specification is not exactly the most rigorous thing I've ever seen (https://github.com/openssh/openssh-portable/blob/master/PROT...) but reading it, the sequence number is only included in the IV, and not as AAD, which directly runs afoul of the RFC4253 section 6.4 requirement for it to be included in the MAC.
- SSH3: SSH using HTTP/3 and QUIC
-
SSH keys stolen by stream of malicious PyPI and NPM packages
The key layout is described in https://github.com/openssh/openssh-portable/blob/master/PROT... and you can view it pretty easily via
cat private_key_here | head -n -1 | tail -n +2 | base64 -d | xxd
One I created in 2016 is using aes256-cbc with bcrypt for the kdf, which isn't awful at all.
-
Microsoft signing keys were leaked
Interestingly, it looks like ssh-agent disables core dumps[1], but I don't see similar usage for sshd
1: https://github.com/openssh/openssh-portable/blob/694150ad927...
What are some alternatives?
certificate-transparency - Auditing for TLS certificates.
daemon - turns other processes into daemons
Delegator.py - Subprocesses for Humans 2.0.
mac-ssh-confirm - Protect against SSH Agent Hijacking on Mac OS X with the ability to confirm agent identities prior to each use
gitprof - CLI tool which simplifies working with multiple Git accounts/services.
ssh-mitm - SSH-MITM - ssh audits made simple
cpu - cpu command in Go, inspired by the Plan 9 cpu command
guardian-agent - [beta] Guardian Agent: secure ssh-agent forwarding for Mosh and SSH
git-switch-user - Manage your git identities with ease
gentoo - [MIRROR] Official Gentoo ebuild repository
ng - scripting language integrated with Go
lightdm - Display Manager