Advertisements

OpenSSH

  • Microsoft made this official announcement today: As Microsoft has shifted towards a more customer-oriented culture, Microsoft engineers are using social networks, tech communities and direct customer feedback as an integral part on how we make decisions about future investments. A popular request the PowerShell team has received is to use Secure Shell protocol and Shell session (aka SSH) to interoperate between Windows and Linux – both Linux connecting to and managing Windows via SSH and, vice versa, Windows connecting to and managing Linux via SSH. Thus, the combination of PowerShell and SSH will deliver a robust and secure solution to automate and to remotely manage Linux and Windows systems. SSH solutions are available today by a number of vendors and communities, especially in the Linux world. However, there are limited implementations customers can deploy in Windows production environments.  After reviewing these alternatives, the PowerShell team realized the best option will be for our team to adopt an industry proven solution while providing tight integration with Windows; a solution that Microsoft will deliver in Windows while working closely with subject matter experts across the planet to build it. Based on these goals, I’m pleased to announce that the PowerShell team will support and contribute to the OpenSSH community – Very excited to work with the OpenSSH community to deliver the PowerShell and Windows SSH solution! A follow up question the reader might have is When and How will the SSH support be available? The team is in the early planning phase, and there’re not exact days yet. However the PowerShell team will provide details in the near future on availability dates. Finally, I’d like to share some background on today’s announcement, because this is the 3rd time the PowerShell team has attempted to support SSH.  The first attempts were during PowerShell V1...
  • August 13, 2012

    OpenSSH Security

    OpenSSH is a free SSH/SecSH protocol suite providing encryption for network services like remote login or remote file transfer.  OpenSSh is an Open Source Project which provides a lot of features and since the software is open source that makes it free for everyone under Open Source Definition (OSD) Strong Encryption (3DES, Blowfish, AES, Arcfour) X11 Forwarding (encrypt X Window System traffic) Port Forwarding (encrypted channels for legacy protocols) Strong Authentication (Public Key, One-Time Password and Kerberos Authentication) Agent Forwarding (Single-Sign-On) Interoperability (Compliance with SSH 1.3, 1.5, and 2.0 protocol Standards) SFTP client and server support in both SSH1 and SSH2 protocols. Kerberos and AFS Ticket Passing Data Compression Strong Encryption OpenSSH supports 3DES, Blowfish, AES and arcfour as encryption algorithms. These are patent free. Triple DES is a time proven and well understood cipher that provides strong encryption. Blowfish is a fast block cipher invented by Bruce Schneier that can be used by people that require faster encryption. AES is the US Federal Information Processing Standard (FIPS) Advanced Encryption Standard developed as a replacement for DES. It is a fast block cipher. Arcfour is a fast stream cipher. It is believed to be compatible with RC4[TM], a proprietary cipher of RSA Security Inc. Encryption is started before authentication, and no passwords or other information is transmitted in the clear. Encryption is also used to protect against spoofed packets. X11 Forwarding X11 forwarding allows the encryption of remote X windows traffic, so that nobody can snoop on your remote xterms or insert malicious commands. The program automatically sets DISPLAY on the server machine, and forwards any X11 connections over the secure channel. Fake Xauthority information is automatically generated and forwarded to the remote machine; the local client automatically examines incoming X11 connections and replaces the fake authorization data with the real data (never telling the remote machine...