But what about those #MS_Windows users out there? How about a gzipped tarball, all nicely packaged up so you can distribute around, of a custom built #PuTTY client that will securely connect people to your #Synchronet_BBS over telnet?
We've released #PuTTY version 0.81. This is a SECURITY UPDATE, fixing a #vulnerability in ECDSA signing for #SSH.
If you've used a 521-bit ECDSA key (ecdsa-sha2-nistp521) with any previous version of PuTTY, consider it compromised! Generate a new key pair, and remove the old public key from authorized_keys files.
Other key types are not affected, even other sizes of ECDSA. In particular, Ed25519 is fine.
BTW: I don't mind you showing off a little if something like #putty or #tweak is the result 😏
btrees are indeed useful - I learned about them when programming efficient data access using C-ISAM many years ago.
We've just released #PuTTY version 0.80! This is a SECURITY UPDATE, fixing the newly discovered 'Terrapin' #vulnerability, aka CVE-2023-48795, in some widely used #SSH protocol extensions.
I'm Simon Tatham, free software developer based in Cambridge, UK. Best known for PuTTY and a collection of puzzle games; various other things largish and smaller. Mostly tend to start my own projects rather than joining existing ones. (I think just because that's my idea of fun.)
This is my first time dipping my toe into short-form social media. (I was never on the birdsite.) Probably expecting to post random tech musings, with occasional maths.
I host a piece of software on my server for my father. He connects to it via #SSH (using #PuTTY ). He just got a new computer, and wanted me to set it up so that he could connect, just like I did with his previous computer. No problem right?
I show up, generate the key, and authorize it on the server, but for whatever reason PuTTY refuses to acknowledge the existence of this key. I know it's not even trying, because it doesn't even ask for the passphrase to decrypt it.
Has something changed in the latest version of PuTTY that I just don't know about? Do I need to do something the enable public key authentication beyond simply specifying the path to the key?