governa, 4 days ago to windows

Ransomware gang targets #Windows admins via #PuTTy, #WinSCP malvertising

https://www.bleepingcomputer.com/news/security/ransomware-gang-targets-windows-admins-via-putty-winscp-malvertising/

tallship, 12 days ago to bbs

Synchronet BBS as an #onion node makes #telnet over #Tor a secure protocol because your exit node is the #BBS itself...

Brilliant!

• Synchronet over Tor on an rPi - Marvelous!

But what about those #MS_Windows users out there? How about a gzipped tarball, all nicely packaged up so you can distribute around, of a custom built #PuTTY client that will securely connect people to your #Synchronet_BBS over telnet?

Brilliant!

• Create a custom PuTTY package to distribute for your BBS over Tor - Magnificent!

What was that again? Oh yeah, ... Brilliant!

Enjoy!

#tallship #FOSS #Synchronet #rPi h/t to @dheadshot

⛵

.

governa, 14 days ago to Citrix

#Citrix warns admins to manually mitigate #PuTTY SSH client bug

https://www.bleepingcomputer.com/news/security/citrix-warns-admins-to-manually-mitigate-putty-ssh-client-bug/

stux, 1 month ago to random

New PuTTY Vulnerability via @endingwithali

#ThreatWire #Hak5 #PuTTY

https://www.youtube.com/watch?v=XZSS08ld6vM

governa, 1 month ago to random

High Priority #PuTTY Vulnerability Threatens Server Access Security

https://linuxiac.com/high-priority-putty-vulnerability-found/

ericfreyss, 1 month ago to random French

Cette faille dans #PuTTY permet de récupérer les clés privées https://www.it-connect.fr/faille-de-securite-client-ssh-putty-permet-de-recuperer-les-cles-privees-cve-2024-31497/

linuxiac, 1 month ago to security

PuTTY's security flaw (CVE2024-31497) in ECDSA P521 keys risks private data exposure. Urgent update is needed.
https://linuxiac.com/high-priority-putty-vulnerability-found/

#putty #security

simontatham, 1 month ago to random

We've released #PuTTY version 0.81. This is a SECURITY UPDATE, fixing a #vulnerability in ECDSA signing for #SSH.

If you've used a 521-bit ECDSA key (ecdsa-sha2-nistp521) with any previous version of PuTTY, consider it compromised! Generate a new key pair, and remove the old public key from authorized_keys files.

Other key types are not affected, even other sizes of ECDSA. In particular, Ed25519 is fine.

This vulnerability has id CVE-2024-31497. Full information is at https://www.chiark.greenend.org.uk/~sgtatham/putty/wishlist/vuln-p521-bias.html

jwz, 3 months ago to random

Today in "Daylight Savings Chaos Monkey"

If you have backups but you have never tried to restore them, you do not have backups. This is true.

I made a MySQL oopsie, and tried to restore a table from my voluminous backups of same, and was met...
https://jwz.org/b/ykM4

voltagex, 3 months ago to windows

Looking for an alternative to using #PuTTY for #Serial communication on #Windows

markwalker, 4 months ago to beer

Any beer fans here know what this is 👀😍

I've also just found out one of the Verdant founders, Adam, used to be a developer for the same company as me!

#putty #beer

The back of the 2024 Putty can. Showing it's an 8% DIPA with a blend of 3 hops

simontatham, 5 months ago to random

We've just released #PuTTY version 0.80! This is a SECURITY UPDATE, fixing the newly discovered 'Terrapin' #vulnerability, aka CVE-2023-48795, in some widely used #SSH protocol extensions.

The release is available in the usual place, at https://www.chiark.greenend.org.uk/~sgtatham/putty/

Full information on the vulnerability is at https://www.chiark.greenend.org.uk/~sgtatham/putty/wishlist/vuln-terrapin.html

We urge users to upgrade, and also upgrade #OpenSSH servers. A fix is needed at both ends of the connection to eliminate the vulnerability.

#TerrapinAttack

shaft, 7 months ago to random French

Ah tiens, je n'avais pas remarqué que #PuTTY gére les clés #Ed448. Et regarde le changelog depuis la v0.75 datant de mai 2021

Bon malheureusement, #OpenSSH ne les gère toujours pas à ma connaissance. Alors qu'Ed448 pour #SSH a été normalisé en même temps qu'Ed25519 (RFC 8709)

simontatham, 8 months ago to random

Greetings everyone! #introductions

I'm Simon Tatham, free software developer based in Cambridge, UK. Best known for PuTTY and a collection of puzzle games; various other things largish and smaller. Mostly tend to start my own projects rather than joining existing ones. (I think just because that's my idea of fun.)

This is my first time dipping my toe into short-form social media. (I was never on the birdsite.) Probably expecting to post random tech musings, with occasional maths.

dada, 9 months ago to random French

'tain mais c'est vraiment de la merde #putty.

Je fais comment pour me connecter en SSH à un de mes serveurs avec ce merdier ? Il me dit toujours Host not found, ce gros boulet.

fosslife, 9 months ago to random

Eric Bärwaldt looks at three graphical front ends for remote management needs https://www.fosslife.org/3-graphical-front-ends-ssh #SSH #FrontEnd #Ásbrú #EasySSH #PuTTY #networking #SystemAdministration

vowe, 9 months ago to random

deleted_by_author

me, 9 months ago to random

This is extremely frustrating.

I host a piece of software on my server for my father. He connects to it via #SSH (using #PuTTY ). He just got a new computer, and wanted me to set it up so that he could connect, just like I did with his previous computer. No problem right?

I show up, generate the key, and authorize it on the server, but for whatever reason PuTTY refuses to acknowledge the existence of this key. I know it's not even trying, because it doesn't even ask for the passphrase to decrypt it.

Has something changed in the latest version of PuTTY that I just don't know about? Do I need to do something the enable public key authentication beyond simply specifying the path to the key?

#AskFedi

governa, 9 months ago to linux

A Comprehensive Guide to Using #PuTTY for #SSH into #Linux 🐧

https://www.linuxjournal.com/content/comprehensive-guide-using-putty-ssh-linux