Search
Items tagged with: SSH
#PuTTY #SSH client flaw allows recovery of #cryptographic #private keys
> A vulnerability tracked as CVE-2024-31497 in PuTTY 0.68 through 0.80 could potentially allow attackers with access to 60 cryptographic signatures to recover the private key used for their generation.
This only works if you are using "ChaCha20-Poly1305" or "CBC with Encrypt-then-MAC", so it isn't a universal flaw.
https://it.slashdot.org/story/23/12/20/1212226/attack-discovered-against-ssh
Attack Discovered Against SSH - Slashdot
jd writes: Ars Technica is reporting a newly-discovered man-in-the-middle attack against SSH. This only works if you are using "ChaCha20-Poly1305" or "CBC with Encrypt-then-MAC", so it isn't a universal flaw.it.slashdot.org
Una chiacchierata su: self-hosting git
big per pubblicare il proprio codice.
- gitolite
- cgit
- linkopedia (che a sua volta è tenuta in un repo git, visibile via cgit)
GitHub - sitaramc/gitolite: Hosting git repositories -- Gitolite allows you to setup git hosting on a central server, with very fine-grained access control and many (many!) more powerful features.
Hosting git repositories -- Gitolite allows you to setup git hosting on a central server, with very fine-grained access control and many (many!) more powerful features. - GitHub - sitaramc/gitolite...GitHub