zlacker

[parent] [thread] 1 comments
1. null_d+(OP)[view] [source] 2026-02-05 12:52:32
So that’s generally my train of thought, but from what I know there were serious vulnerabilities discovered in OpenSSH throughout the years, doesn’t it increase the risk for open ssh port or were the vulnerabilities discovered never touched those areas of ssh authentication. Seems to me that tools like tailscale and so on aren’t open to this sort of risk but I definitely can be wrong
replies(1): >>lxgr+Ee
2. lxgr+Ee[view] [source] 2026-02-05 14:29:51
>>null_d+(OP)
The only one I can think of is the one on Debian where key generation used weak entropy, making keys guessable.

Given its sensitivity, OpenSSH is incredibly battle-hardened and probably better than almost everything else you can run on an exposed port.

[go to top]