| Port details |
- py-ssh-audit SSH server auditing
- 3.3.0 security
 =3      3.2.0_1Version of this port present on the latest quarterly branch. - Maintainer: pkubaj@FreeBSD.org
- Port Added: 2017-11-24 21:32:13
- Last Update: 2024-10-16 13:21:06
- Commit Hash: 15d639c
- People watching this port, also watch:: isc-cron, cronic, monit, fusefs-sshfs, fusefs-unionfs
- License: MIT
- WWW:
- https://github.com/jtesta/ssh-audit
- Description:
- ssh-audit is a tool for ssh server & client configuration auditing.
Features:
* SSH1 and SSH2 protocol server support;
* analyze SSH client configuration;
* grab banner, recognize device or software and operating system,
detect compression;
* gather key-exchange, host-key, encryption and
message authentication code algorithms;
* output algorithm information
(available since, removed/disabled, unsafe/weak/legacy, etc);
* output algorithm recommendations
(append or remove based on recognized software version);
* output security information (related issues, assigned CVE list, etc);
* analyze SSH version compatibility based on algorithm information;
* historical information from OpenSSH, Dropbear SSH and libssh;
* no dependencies, compatible with Python 2.6+, Python 3.x and PyPy.
  ¦  ¦  ¦  ¦ 
- Manual pages:
- FreshPorts has no man page information for this port.
- pkg-plist: as obtained via:
make generate-plist - There is no configure plist information for this port.
- Dependency lines:
-
- ${PYTHON_PKGNAMEPREFIX}ssh-audit>0:security/py-ssh-audit@${PY_FLAVOR}
- To install the port:
- cd /usr/ports/security/py-ssh-audit/ && make install clean
- To add the package, run one of these commands:
- pkg install security/py-ssh-audit
- pkg install py311-ssh-audit
NOTE: If this package has multiple flavors (see below), then use one of them instead of the name specified above.
NOTE: This is a Python port. Instead of py311-ssh-audit listed in the above command, you can pick from the names under the Packages section.- PKGNAME: py311-ssh-audit
- Package flavors (<flavor>: <package>)
- distinfo:
- TIMESTAMP = 1729078924
SHA256 (jtesta-ssh-audit-v3.3.0_GH0.tar.gz) = e533c9ff2c1e655576b78a7732cdb01cf765e002716e5c086322ba4737c5e63b
SIZE (jtesta-ssh-audit-v3.3.0_GH0.tar.gz) = 172808
Packages (timestamps in pop-ups are UTC):
- Dependencies
- NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.
- Build dependencies:
-
- py311-setuptools>0 : devel/py-setuptools@py311
- py311-wheel>0 : devel/py-wheel@py311
- python3.11 : lang/python311
- py311-build>=0 : devel/py-build@py311
- py311-installer>=0 : devel/py-installer@py311
- Test dependencies:
-
- python3.11 : lang/python311
- Runtime dependencies:
-
- python3.11 : lang/python311
- There are no ports dependent upon this port
Configuration Options:- No options to configure
- Options name:
- security_py-ssh-audit
- USES:
- python
- FreshPorts was unable to extract/find any pkg message
- Master Sites:
|
| Commit History - (may be incomplete: for full details, see links to repositories near top of page) |
| Commit | Credits | Log message |
|---|
3.3.0
16 Oct 2024 13:21:06
 |
Piotr Kubaj (pkubaj) |
security/py-ssh-audit: update to 3.3.0
Also remove whitespaces from pkg-plist.
Changelog: https://github.com/jtesta/ssh-audit/releases/tag/v3.3.0 |
3.2.0_1
16 Aug 2024 11:54:25
|
Piotr Kubaj (pkubaj) |
security/py-ssh-audit: fix hang on runtime
PR: 280827
Submitted by: michaelo |
3.2.0
24 Apr 2024 21:21:20
|
Piotr Kubaj (pkubaj) |
security/py-ssh-audit: update to 3.2.0
Also switch to static pkg-plist.
Changelog: https://github.com/jtesta/ssh-audit/releases/tag/v3.2.0 |
3.1.0_1
21 Jan 2024 22:51:33
|
Muhammad Moinur Rahman (bofh) |
security/py-ssh-audit: Sanitize MANPREFIX
Approved by: portmgr (blanket) |
3.1.0
21 Dec 2023 22:01:31
|
Piotr Kubaj (pkubaj) |
security/py-ssh-audit: update to 3.1.0
Changelog: https://github.com/jtesta/ssh-audit/releases/tag/v3.1.0 |
3.0.0_1
09 Nov 2023 08:39:51
|
Piotr Kubaj (pkubaj) |
security/py-ssh-audit: add manpage
PR: 274842
Reported by: dclarke@blastwave.org |
3.0.0
09 Sep 2023 13:41:21
|
Piotr Kubaj (pkubaj) |
security/py-ssh-audit: update to 3.0.0
Changelog: https://github.com/jtesta/ssh-audit/releases/tag/v3.0.0 |
2.9.0
27 Jun 2023 19:34:34
|
Rene Ladan (rene) |
all: remove explicit versions in USES=python for "3.x+"
The logic in USES=python will automatically convert this to 3.8+ by
itself.
Adjust two ports that only had Python 3.7 mentioned but build fine
on Python 3.8 too.
finance/quickfix: mark BROKEN with PYTHON
libtool: compile: c++ -DHAVE_CONFIG_H -I. -I../.. -I -I. -I.. -I../.. -I../C++
-DLIBICONV_PLUG -DPYTHON_MAJOR_VERSION=3 -Wno-unused-variable
-Wno-maybe-uninitialized -O2 -pipe -DLIBICONV_PLUG -fstack-protector-strong
-fno-strict-aliasing -DLIBICONV_PLUG -Wall -ansi
-Wno-unused-command-line-argument -Wpointer-arith -Wwrite-strings
-Wno-overloaded-virtual -Wno-deprecated-declarations -Wno-deprecated -std=c++0x
-MT _quickfix_la-QuickfixPython.lo -MD -MP -MF
.deps/_quickfix_la-QuickfixPython.Tpo -c QuickfixPython.cpp -fPIC -DPIC -o
.libs/_quickfix_la-QuickfixPython.o
warning: unknown warning option '-Wno-maybe-uninitialized'; did you mean
'-Wno-uninitialized'? [-Wunknown-warning-option]
QuickfixPython.cpp:175:11: fatal error: 'Python.h' file not found
^~~~~~~~~~
1 warning and 1 error generated.
Reviewed by: portmgr, vishwin, yuri
Differential Revision: <https://reviews.freebsd.org/D40568> |
2.9.0
09 May 2023 19:54:34
|
Piotr Kubaj (pkubaj) |
security/py-ssh-audit: fix build
py-setuptools was missing. |
2.9.0
06 May 2023 09:09:59
|
Piotr Kubaj (pkubaj) |
security/py-ssh-audit: switch to USE_PYTHON=pep517 |
2.9.0
01 May 2023 09:15:01
|
Piotr Kubaj (pkubaj) |
security/py-ssh-audit: update to 2.9.0
Changelog: https://github.com/jtesta/ssh-audit/releases/tag/v2.9.0 |
07 Sep 2022 21:58:51
|
Stefan Eßer (se) |
Remove WWW entries moved into port Makefiles
Commit b7f05445c00f has added WWW entries to port Makefiles based on
WWW: lines in pkg-descr files.
This commit removes the WWW: lines of moved-over URLs from these
pkg-descr files.
Approved by: portmgr (tcberner) |
2.5.0
07 Sep 2022 21:10:59
|
Stefan Eßer (se) |
Add WWW entries to port Makefiles
It has been common practice to have one or more URLs at the end of the
ports' pkg-descr files, one per line and prefixed with "WWW:". These
URLs should point at a project website or other relevant resources.
Access to these URLs required processing of the pkg-descr files, and
they have often become stale over time. If more than one such URL was
present in a pkg-descr file, only the first one was tarnsfered into
the port INDEX, but for many ports only the last line did contain the
port specific URL to further information.
There have been several proposals to make a project URL available as
a macro in the ports' Makefiles, over time.
(Only the first 15 lines of the commit message are shown above  ) |
2.5.0
27 Aug 2021 15:00:39
|
Piotr Kubaj (pkubaj) |
security/py-ssh-audit: update to 2.5.0
Changelog:
* Fixed crash when running host key tests.
* Handles server connection failures more gracefully.
* Now prints JSON with indents when -jj is used (useful for debugging).
* Added MD5 fingerprints to verbose output.
* Added -d/--debug option for getting debugging output; credit Adam Russell.
* Updated JSON output to include MD5 fingerprints. Note that this results in a
breaking change in the 'fingerprints' dictionary format.
* Updated OpenSSH 8.1 (and earlier) policies to include rsa-sha2-512 and
rsa-sha2-256.
* Added OpenSSH v8.6 & v8.7 policies.
* Added 3 new key exchanges: gss-gex-sha1-eipGX3TCiQSrx573bT1o1Q==,
gss-group1-sha1-eipGX3TCiQSrx573bT1o1Q==, and
gss-group14-sha1-eipGX3TCiQSrx573bT1o1Q==.
* Added 3 new MACs: hmac-ripemd160-96, AEAD_AES_128_GCM, and AEAD_AES_256_GCM. |
2.4.0
07 Apr 2021 08:09:01
|
Mathieu Arnold (mat) |
One more small cleanup, forgotten yesterday.
Reported by: lwhsu |
2.4.0
06 Apr 2021 14:31:07
|
Mathieu Arnold (mat) |
Remove # $FreeBSD$ from Makefiles. |
2.4.0
24 Feb 2021 02:34:02
 |
pkubaj |
security/py-ssh-audit: update to 2.4.0
Changelog:
- Added multi-threaded scanning support.
- Added built-in Windows manual page (see `-m`/`--manual`); credit [Adam
Russell](https://github.com/thecliguy).
- Added version check for OpenSSH user enumeration (CVE-2018-15473).
- Added deprecation note to host key types based on SHA-1.
- Added extra warnings for SSHv1.
- Added built-in hardened OpenSSH v8.5 policy.
- Upgraded warnings to failures for host key types based on SHA-1.
- Fixed crash when receiving unexpected response during host key test.
- Fixed hang against older Cisco devices during host key test & gex test.
- Fixed improper termination while scanning multiple targets when one target
returns an error.
- Dropped support for Python 3.5 (which reached EOL in Sept. 2020).
- Added 1 new key exchange: `sntrup761x25519-sha512@openssh.com`. |
2.3.1_1
28 Dec 2020 23:02:15
|
antoine |
Drop python 2.7 support from a few ports
With hat: portmgr |
11 Nov 2020 14:18:41
|
pkubaj |
security/py-ssh-audit: more fixes |
2.3.1_1
11 Nov 2020 13:48:34
|
pkubaj |
security/py-ssh-audit: fix run-time
Traceback (most recent call last):
File "/usr/local/bin/ssh-audit", line 10, in <module>
from ssh_audit.ssh_audit import main # noqa: E402
ModuleNotFoundError: No module named 'ssh_audit' |
2.3.1
30 Oct 2020 11:56:09
|
pkubaj |
security/py-ssh-audit: update to 2.3.1
Changelog:
- Now parses public key sizes for rsa-sha2-256-cert-v01@openssh.com and
rsa-sha2-512-cert-v01@openssh.com host key types.
- Flag ssh-rsa-cert-v01@openssh.com as a failure due to SHA-1 hash.
- Fixed bug in recommendation output which suppressed some algorithms
inappropriately.
- Built-in policies now include CA key requirements (if certificates are in
use).
- Lookup function (--lookup) now performs case-insensitive lookups of similar
algorithms; credit Adam Russell.
- Migrated pre-made policies from external files to internal database.
- Split single 3,500 line script into many files (by class).
- Added setup.py support; credit Ganden Schaffner.
- Added 1 new cipher: des-cbc@ssh.com. |
2.3.0
28 Sep 2020 22:02:10
|
pkubaj |
security/py-ssh-audit: update to 2.3.0
Changelog:
https://github.com/jtesta/ssh-audit/releases/tag/v2.3.0 |
2.2.0
05 Jun 2020 12:00:04
|
pkubaj |
security/py-ssh-audit: fix pkg-descr
Move website to the fork that we use, add descriptions of new features from
README.md. |
2.2.0
12 Mar 2020 08:39:59
|
pkubaj |
security/py-ssh-audit: update to 2.2.0 |
2.1.1
06 Jan 2020 12:49:49
|
pkubaj |
security/py-ssh-audit: while here, update maintainer to my @FreeBSD.org address |
2.1.1
06 Jan 2020 12:49:09
|
pkubaj |
security/py-ssh-audit: update to 2.1.1, switch to a fork
The original author went MIA, there are many improvements in the fork.
PR: 242408
Submitted by: ehaupt |
1.7.0
24 Nov 2017 21:32:05
|
yuri |
New port: security/py-ssh-audit: SSH server auditing
PR: 223810
Submitted by: Piotr Kubaj <pkubaj@anongoth.pl>
Approved by: tcberner (mentor)
Differential Revision: https://reviews.freebsd.org/D13207 |
As an Amazon Associate I earn from qualifying purchases.