This release re-classifies the very common ssh-rsa host key type as weak, due to practical SHA-1 attacks (see link below). Many new algorithms are also implemented.
- Marked host key type
ssh-rsaas weak due to practical SHA-1 collisions. - Added Windows builds.
- Added 10 new host key types:
ecdsa-sha2-1.3.132.0.10,x509v3-sign-dss,x509v3-sign-rsa,x509v3-sign-rsa-sha256@ssh.com,x509v3-ssh-dss,x509v3-ssh-rsa,sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,sk-ssh-ed25519-cert-v01@openssh.com, andsk-ssh-ed25519@openssh.com. - Added 18 new key exchanges:
diffie-hellman-group14-sha256@ssh.com,diffie-hellman-group15-sha256@ssh.com,diffie-hellman-group15-sha384@ssh.com,diffie-hellman-group16-sha384@ssh.com,diffie-hellman-group16-sha512@ssh.com,diffie-hellman-group18-sha512@ssh.com,ecdh-sha2-curve25519,ecdh-sha2-nistb233,ecdh-sha2-nistb409,ecdh-sha2-nistk163,ecdh-sha2-nistk233,ecdh-sha2-nistk283,ecdh-sha2-nistk409,ecdh-sha2-nistp192,ecdh-sha2-nistp224,ecdh-sha2-nistt571,gss-gex-sha1-, andgss-group1-sha1-. - Added 9 new ciphers:
camellia128-cbc,camellia128-ctr,camellia192-cbc,camellia192-ctr,camellia256-cbc,camellia256-ctr,aes128-gcm,aes256-gcm, andchacha20-poly1305. - Added 2 new MACs:
aes128-gcmandaes256-gcm.
Note that pre-built packages are available for Windows (below), via PyPI (pip3 install ssh-audit), and via the snap repository (snap install ssh-audit).