github warp-tech/warpgate v0.9.1
on GitHub

latest releases: v0.10.2, v0.10.1, v0.10.0...
9 months ago

Security fixes

CVE-2023-48795 - Terrapin Attack [12fdf62]

A flaw in the SSH protocol itself allows an active MitM attacker to prevent the client & server from negotiating OpenSSH security extensions, or, with AsyncSSH, take control of the user's session.

This release adds the support for the kex-strict-*-v00@openssh.com extensions designed by OpenSSH specifically to prevent this attack.

More info: https://terrapin-attack.com

Changes

  • 21d6ab4: make HTTP session timeout and cookie age configurable in the config file (Nicolas SEYS) #922
Check out latest releases or
releases around warp-tech/warpgate v0.9.1

Don't miss a new warpgate release

NewReleases is sending notifications on new releases.

Get notifications