Nmap Development mailing list archives
Re: [NSE] script to check for weak SSH hostkeys
From: David Fifield <david () bamsoftware com>
Date: Sat, 18 Oct 2008 16:47:41 -0600
On Sat, Oct 18, 2008 at 03:48:27PM +0200, Sven Klemm wrote:
attached is a script to check for weak SSH hostkeys. I am not sure about merging this into nmap trunk because it depends on data files not part of nmap. You can get those files for example from here: http://packages.debian.org/source/testing/openssh-blacklist http://packages.debian.org/source/testing/openssh-blacklist-extra It expects to find the blacklists in NMAPDATADIR with the following name: openssh.blacklist.$algorithm-$bits
Are there one or two common places where the blacklists are commonly installed? On Debian I have /etc/ssh/blacklist.DSA-1024 and /etc/ssh/blacklist.RSA-2048, which I believe were installed along with an openssh update after the OpenSSL vulnerability was fixed. If there is such a common place I think it would be better to check there rather than in one of Nmap's directories, where no one will install the blacklists unless they are specifically looking for weak keys. Nmap's directory could also be used. David Fifield _______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://SecLists.Org
Current thread:
- [NSE] script to check for weak SSH hostkeys Sven Klemm (Oct 18)
- Re: [NSE] script to check for weak SSH hostkeys David Fifield (Oct 18)
- Re: [NSE] script to check for weak SSH hostkeys Sven Klemm (Oct 18)
- Re: [NSE] script to check for weak SSH hostkeys Fyodor (Oct 19)
- Re: [NSE] script to check for weak SSH hostkeys Arturo 'Buanzo' Busleiman (Oct 19)
- Re: [NSE] script to check for weak SSH hostkeys Sven Klemm (Oct 19)
- Re: [NSE] script to check for weak SSH hostkeys Arturo 'Buanzo' Busleiman (Oct 19)
- Re: [NSE] script to check for weak SSH hostkeys David Fifield (Oct 18)