Vuln ssh small key

From Atomicorp Wiki
Revision as of 14:54, 25 January 2017 by Mshinn (Talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

SSH allows users to use cryptographic keys to log into the system. ASL will scan the keys that users have installed to look for weak keys. Weak keys are defined, currently, as any key 1024 bits or smaller. RSA claims that 1024-bit keys are likely to become crackable some time between 2006 and 2010 and that 2048-bit keys are sufficient until 2030.

Run this command as the root user to find users with weak keys:

asl -m ssh_check

Additional reading

https://en.wikipedia.org/wiki/Key_size

Personal tools