-
Add those fields to PerformanceResourceTiming.
Protocol - SSL 1.0, SSL 2,0, SSL 3.0, TLS 1.1, TLS 1.2, TLS 1.3...
Cipher - AES_128_GCM...
Key exchange - ECDHE_RSA...
Signature algorithm - SHA256R…
-
Newer releases of `rustls` have introduced abstraction layers for implementing custom cryptography backends for the client. Right now we have our own heavily modified fork which does the same and adds…
-
The client string set [here](https://github.com/sshnet/SSH.NET/blob/13a6b5df0e8ebd37fbd7cefff4a491ed82ea3c9f/src/Renci.SshNet/Session.cs#L565) is static and hasn't been updated in eight years.
Upda…
-
It seems pretty ubiquitous both in terms of implementation and deployment and if some client are emitting only x25519 shares in ClientHello, then making it MTI might improve interop, so... should we?
sftcd updated
1 month ago
-
# Bug description
Every version since the 24.7 beta leaves me unable to connect to my sever due to no matching MAC algorithms. I suspect this is due to the Terrapin attack fix in WebSSH, but none of …
-
There are no configuration parameters that allow to select what TLS versions and exact ciphers should be enabled.
At this moment there are TLS1.0 and TLS1.1 enabled including 3DES ciphers vulnerabl…
-
OS:
```
# cat /proc/version
Linux version 5.14.0-305.el9.x86_64 (mockbuild@x86-05.stream.rdu2.redhat.com) (gcc (GCC) 11.3.1 20221121 (Red Hat 11.3.1-4), GNU ld version 2.35.2-39.el9) #1 SMP PREEMPT…
-
In the IETF draft "[Chacha derived AEAD algorithms in
JOSE](https://tools.ietf.org/html/draft-amringer-jose-chacha-01#section-3)" there is mention of a "Concat KDF" used by the "ECDH-ES" algorithm.
…
-
What algorithms for key exchange, encryption (and signing) do we use? How is crypto agility achieved?
-
Expected behavior:
As mentioned in #10918 `ssh-rsa-cert-v01` is no longer on the approval list of `PubKeyAcceptedAlgorithms` for many new OSes like Alma 9.
This issue of teleport generating `ssh…