API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Feb 28th, 2020
176
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 10.14 KB | None | 0 0
raw download clone embed print report
  1. # general
  2. (gen) banner: SSH-2.0-OpenSSH_5.3p1 Debian-3ubuntu3
  3. (gen) software: OpenSSH 5.3p1
  4. (gen) compatibility: OpenSSH 4.7-6.6, Dropbear SSH 0.53+ (some functionality from 0.52)
  5. (gen) compression: enabled (zlib@openssh.com)
  6.  
  7. # key exchange algorithms
  8. (kex) diffie-hellman-group-exchange-sha256 -- [warn] using custom size modulus (possibly weak)
  9. `- [info] available since OpenSSH 4.4
  10. (kex) diffie-hellman-group-exchange-sha1 -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
  11. `- [warn] using weak hashing algorithm
  12. `- [info] available since OpenSSH 2.3.0
  13. (kex) diffie-hellman-group14-sha1 -- [warn] using weak hashing algorithm
  14. `- [info] available since OpenSSH 3.9, Dropbear SSH 0.53
  15. (kex) diffie-hellman-group1-sha1 -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
  16. `- [fail] disabled (in client) since OpenSSH 7.0, logjam attack
  17. `- [warn] using small 1024-bit modulus
  18. `- [warn] using weak hashing algorithm
  19. `- [info] available since OpenSSH 2.3.0, Dropbear SSH 0.28
  20.  
  21. # host-key algorithms
  22. (key) ssh-rsa -- [info] available since OpenSSH 2.5.0, Dropbear SSH 0.28
  23. (key) ssh-dss -- [fail] removed (in server) and disabled (in client) since OpenSSH 7.0, weak algorithm
  24. `- [warn] using small 1024-bit modulus
  25. `- [warn] using weak random number generator could reveal the key
  26. `- [info] available since OpenSSH 2.1.0, Dropbear SSH 0.28
  27.  
  28. # encryption algorithms (ciphers)
  29. (enc) aes128-ctr -- [info] available since OpenSSH 3.7, Dropbear SSH 0.52
  30. (enc) aes192-ctr -- [info] available since OpenSSH 3.7
  31. (enc) aes256-ctr -- [info] available since OpenSSH 3.7, Dropbear SSH 0.52
  32. (enc) arcfour256 -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
  33. `- [warn] disabled (in client) since OpenSSH 7.2, legacy algorithm
  34. `- [warn] using weak cipher
  35. `- [info] available since OpenSSH 4.2
  36. (enc) arcfour128 -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
  37. `- [warn] disabled (in client) since OpenSSH 7.2, legacy algorithm
  38. `- [warn] using weak cipher
  39. `- [info] available since OpenSSH 4.2
  40. (enc) aes128-cbc -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
  41. `- [warn] using weak cipher mode
  42. `- [info] available since OpenSSH 2.3.0, Dropbear SSH 0.28
  43. (enc) 3des-cbc -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
  44. `- [warn] using weak cipher
  45. `- [warn] using weak cipher mode
  46. `- [warn] using small 64-bit block size
  47. `- [info] available since OpenSSH 1.2.2, Dropbear SSH 0.28
  48. (enc) blowfish-cbc -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
  49. `- [fail] disabled since Dropbear SSH 0.53
  50. `- [warn] disabled (in client) since OpenSSH 7.2, legacy algorithm
  51. `- [warn] using weak cipher mode
  52. `- [warn] using small 64-bit block size
  53. `- [info] available since OpenSSH 1.2.2, Dropbear SSH 0.28
  54. (enc) cast128-cbc -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
  55. `- [warn] disabled (in client) since OpenSSH 7.2, legacy algorithm
  56. `- [warn] using weak cipher mode
  57. `- [warn] using small 64-bit block size
  58. `- [info] available since OpenSSH 2.1.0
  59. (enc) aes192-cbc -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
  60. `- [warn] using weak cipher mode
  61. `- [info] available since OpenSSH 2.3.0
  62. (enc) aes256-cbc -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
  63. `- [warn] using weak cipher mode
  64. `- [info] available since OpenSSH 2.3.0, Dropbear SSH 0.47
  65. (enc) arcfour -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
  66. `- [warn] disabled (in client) since OpenSSH 7.2, legacy algorithm
  67. `- [warn] using weak cipher
  68. `- [info] available since OpenSSH 2.1.0
  69. (enc) rijndael-cbc@lysator.liu.se -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
  70. `- [warn] disabled (in client) since OpenSSH 7.2, legacy algorithm
  71. `- [warn] using weak cipher mode
  72. `- [info] available since OpenSSH 2.3.0
  73.  
  74. # message authentication code algorithms
  75. (mac) hmac-md5 -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
  76. `- [warn] disabled (in client) since OpenSSH 7.2, legacy algorithm
  77. `- [warn] using encrypt-and-MAC mode
  78. `- [warn] using weak hashing algorithm
  79. `- [info] available since OpenSSH 2.1.0, Dropbear SSH 0.28
  80. (mac) hmac-sha1 -- [warn] using encrypt-and-MAC mode
  81. `- [warn] using weak hashing algorithm
  82. `- [info] available since OpenSSH 2.1.0, Dropbear SSH 0.28
  83. (mac) umac-64@openssh.com -- [warn] using encrypt-and-MAC mode
  84. `- [warn] using small 64-bit tag size
  85. `- [info] available since OpenSSH 4.7
  86. (mac) hmac-ripemd160 -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
  87. `- [warn] disabled (in client) since OpenSSH 7.2, legacy algorithm
  88. `- [warn] using encrypt-and-MAC mode
  89. `- [info] available since OpenSSH 2.5.0
  90. (mac) hmac-ripemd160@openssh.com -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
  91. `- [warn] disabled (in client) since OpenSSH 7.2, legacy algorithm
  92. `- [warn] using encrypt-and-MAC mode
  93. `- [info] available since OpenSSH 2.1.0
  94. (mac) hmac-sha1-96 -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
  95. `- [warn] disabled (in client) since OpenSSH 7.2, legacy algorithm
  96. `- [warn] using encrypt-and-MAC mode
  97. `- [warn] using weak hashing algorithm
  98. `- [info] available since OpenSSH 2.5.0, Dropbear SSH 0.47
  99. (mac) hmac-md5-96 -- [fail] removed (in server) since OpenSSH 6.7, unsafe algorithm
  100. `- [warn] disabled (in client) since OpenSSH 7.2, legacy algorithm
  101. `- [warn] using encrypt-and-MAC mode
  102. `- [warn] using weak hashing algorithm
  103. `- [info] available since OpenSSH 2.5.0
  104.  
  105. # algorithm recommendations (for OpenSSH 5.3)
  106. (rec) -diffie-hellman-group1-sha1 -- kex algorithm to remove
  107. (rec) -diffie-hellman-group14-sha1 -- kex algorithm to remove
  108. (rec) -diffie-hellman-group-exchange-sha1 -- kex algorithm to remove
  109. (rec) -ssh-dss -- key algorithm to remove
  110. (rec) -3des-cbc -- enc algorithm to remove
  111. (rec) -blowfish-cbc -- enc algorithm to remove
  112. (rec) -cast128-cbc -- enc algorithm to remove
  113. (rec) -arcfour -- enc algorithm to remove
  114. (rec) -arcfour128 -- enc algorithm to remove
  115. (rec) -arcfour256 -- enc algorithm to remove
  116. (rec) -aes128-cbc -- enc algorithm to remove
  117. (rec) -aes192-cbc -- enc algorithm to remove
  118. (rec) -aes256-cbc -- enc algorithm to remove
  119. (rec) -rijndael-cbc@lysator.liu.se -- enc algorithm to remove
  120. (rec) -hmac-sha1-96 -- mac algorithm to remove
  121. (rec) -hmac-md5 -- mac algorithm to remove
  122. (rec) -hmac-md5-96 -- mac algorithm to remove
  123. (rec) -hmac-ripemd160 -- mac algorithm to remove
  124. (rec) -hmac-ripemd160@openssh.com -- mac algorithm to remove
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!