This repository was archived by the owner on Jul 21, 2025. It is now read-only.
This repository was archived by the owner on Jul 21, 2025. It is now read-only.
Why are rsa-sha2-256 and rsa-sha2-512 reported as weak HostKey algorithms? #26
Description
Sample run
$ python3 sshscan.py -t <target_host>
...
[+] Detected the following weak HostKey algorithms:
rsa-sha2-512 ecdsa-sha2-nistp256
rsa-sha2-256
Why are rsa-sha2-256 and rsa-sha2-512 not included in config.yml by default?
Is there any recommended SSH hardening guide to follow?