top | item 41213065

(no title)

hdmoore | 1 year ago

The Secure Shell (SSH) protocol has survived as an internet-facing management protocol for almost 30 years. Over the decades it has transformed from a single patented codebase to a multitude of implementations available on nearly every operating system and network-connected device.

This presentation dives deep into the Secure Shell protocol, its popular implementations, what's changed, what hasn't, and how this leads to unexpected vulnerabilities and novel attacks. An open source tool, dubbed "sshamble", will be demonstrated, which reproduces these attacks and opens the door for further research.

https://github.com/runZeroInc/sshamble

discuss

mkj|1 year ago

I didn't realise the old ssh.com codebase was patented, apart from crypto patents like RSA (or IDEA?)

throw0101d|1 year ago

See perhaps:

* https://www.ssh.com/legal/patents/

* https://patents.justia.com/assignee/ssh-communications-secur...