This release fixes some minor bugs, and adds some minor features.
Please note that this version is also available as a PyPI package (pip3 install ssh-audit), Snap package (snap install ssh-audit), or as a Windows executable (below, though be aware that Windows Defender inappropriately detects it as malware!).
The full change log is:
- Fixed crash when running host key tests.
- Handles server connection failures more gracefully.
- Now prints JSON with indents when
-jjis used (useful for debugging). - Added MD5 fingerprints to verbose output.
- Added
-d/--debugoption for getting debugging output; credit Adam Russell. - Updated JSON output to include MD5 fingerprints. Note that this results in a breaking change in the 'fingerprints' dictionary format.
- Updated OpenSSH 8.1 (and earlier) policies to include
rsa-sha2-512andrsa-sha2-256. - Added OpenSSH v8.6 & v8.7 policies.
- Added 3 new key exchanges:
gss-gex-sha1-eipGX3TCiQSrx573bT1o1Q==,gss-group1-sha1-eipGX3TCiQSrx573bT1o1Q==, andgss-group14-sha1-eipGX3TCiQSrx573bT1o1Q==. - Added 3 new MACs:
hmac-ripemd160-96,AEAD_AES_128_GCM, andAEAD_AES_256_GCM.