RUNZERO RESEARCH UNCOVERS EXPOSURES IN SSH.

runZero has released new research on Secure Shell (SSH) exposures and has developed an open source tool called SSHamble to help security teams test for misconfigurations and software bugs in SSH implementations. The research was prompted by the xz-utils backdoor incident and the investigation into the persona "Jia Tan" used by likely nation-state actors. The research team discovered weaknesses in SSH implementations and applications that impact network security devices and software. SSH vulnerabilities were found in various products, and runZero has made SSHamble available as a free tool to identify and address these vulnerabilities. [Extracted from the article]

Copyright of UNIX Update is the property of Worldwide Videotex and its content may not be copied or emailed to multiple sites or posted to a listserv without the copyright holder's express written permission. However, users may print, download, or email articles for individual use. This abstract may be abridged. No warranty is given about the accuracy of the copy. Users should refer to the original published version of the material for the full abstract. (Copyright applies to all Abstracts.)