ssh-vulnkey

Allows to check ssh keys against debian ssh key vulnerability database.

Setup

% make setup

This downloads the Debian blacklist files into ./blacklist. ssh-vulnkey uses that local copy automatically when /usr/share/ssh/blacklist.* is not available.

Sample Usage

% ssh-vulnkey key1.pub key2.pub

DKIM public keys can be checked after converting the DNS p= value into an OpenSSH public key:

% dig txt google._domainkey.github.com +short | ./dkim-vulnkey

Testing

% make test

Rationale

Debian removed the patch implementing ssh-vulnkey in openssh thus no tool was available anymore to check keys against the vulnerability databases as provided in openssh-blacklist(-extra).

Idea

Also provide more generic RSA key checks for eg. known weak keys.

License, Author

License: Apache 2
Author: Michael Gebetsroither mgebetsroither@mgit.at

Name		Name	Last commit message	Last commit date
Latest commit History 22 Commits
.github/workflows		.github/workflows
mock		mock
.gitignore		.gitignore
.travis.yml		.travis.yml
LICENSE		LICENSE
Makefile		Makefile
README.md		README.md
dkim-vulnkey		dkim-vulnkey
get-blacklists		get-blacklists
shunit2-tests.sh		shunit2-tests.sh
ssh-vulnkey		ssh-vulnkey

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

ssh-vulnkey

Setup

Sample Usage

Testing

Rationale

Idea

License, Author

About

Uh oh!

Releases

Packages

Uh oh!

Contributors

Uh oh!

Languages

Folders and files

Latest commit

History

Repository files navigation

ssh-vulnkey

Setup

Sample Usage

Testing

Rationale

Idea

License, Author

About

Resources

License

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Uh oh!

Contributors

Uh oh!

Languages

Packages