49611 2024-03-05 12:41:16 +0300 Consider to update openssh version 2024-04-09 14:03:26 +0300 1 1 1 Unclassified Branch p10 openssh-server не указана x86_64 Linux NEW P5 normal --- 1 constacalm glebfm amakeenk constacalm max.gordeef qa-p10 oldest_to_newest 242568 0 constacalm 2024-03-05 12:41:16 +0300 Now in p10 platform openssh version is only OpenSSH_7.9p1, which is more than 5 years old (release date 19.10.2018). It seems to be already out of main support lifecycle. The second problem is this OpenSSH_7.9p1 version can not support FIDO authentication protocol. And users can't store their (i.e. ssh residential) keys on any security tokens (such as RutokenMFA, Yubikey, Google Titan, etc). The support of this FIDO residential keys starts after ssh via OpenSSH_8.2p1 and later bulds (after 8.3 main support functionality has been added). In this case oenssh in p10 platform can be vulnerable to a Snake SSH attacks (i.e. https://github.com/gdarko/ssh-snake). Consider to update openssh version if it is possible.