OpenSSH

OpenSSH 10.3 patches five security bugs and drops legacy rekeying support

April 2, 2026

OpenSSH 10.3 shipped carrying five security fixes alongside feature additions and a set of behavior changes that will break compatibility with older SSH implementations that …

GitHub adds post-quantum protection for SSH access

September 16, 2025

GitHub is adding post-quantum cryptography to secure SSH connections, a move that signals the company’s preparation for a time when current encryption may no longer be safe. …

SSH vulnerability exploitable in Terrapin attacks (CVE-2023-48795)

December 19, 2023

Security researchers have discovered a vulnerability (CVE-2023-48795) in the SSH cryptographic network protocol that could allow an attacker to downgrade the …

OpenSSH adds protection against Spectre, Meltdown, RAMBleed

June 24, 2019

OpenSSH, a widely used suite of programs for secure (SSH protocol-based) remote login, has been equipped with protection against side-channel attacks that could allow …

Old and new OpenSSH backdoors threaten Linux servers

December 7, 2018

OpenSSH, a suite of networking software that allows secure communications over an unsecured network, is the most common tool for system administrators to manage rented Linux …

Quickly audit and adjust SSH server configurations with SSH-audit

October 14, 2016

SSH-audit is a standalone open source tool for auditing and fixing SSH server configurations. It has no dependencies and will run wherever Python is available. It supports …

SSHowDowN Proxy attacks using IoT devices

October 13, 2016

Akamai’s Threat Research team has identified a recent spate of SSHowDowN Proxy attacks whereby attackers are using Internet of Things (IoT) devices to remotely generate …

Flaw allows malicious OpenSSH servers to steal users’ private SSH keys

January 15, 2016

Qualys researchers have discovered two vulnerabilities in the popular OpenSSH implementation of the secure shell protocol, one of which (CVE-2016-0777) could be exploited by …