OPENSSH

INTRODUCTION
Stands for Open Secure Shell

Provides secure remote access and file transfer

Most widely used implementation of SSH protocol

Replaced corresponding unsecure tools like telnet

HISTORY
First release- late 1999 as part of openBSD 2.6

Had 2 protocols SSH1 & SSH2.

In version 5.4, SSH1 protocol was diabled and SSH2 was

made the default protocol

Most recent version OPENSSH 6.7

FEATURES
Open source project

Free licensing

Strong encryption (3DES , AES , Blowfish)

Strong authentication (Public key , One-time password &

Kerberos authentication)

 Allows port forwarding

Data compression

ADVANTAGES
Prevents eavesdropping of transmitted data

Prevents data manipulation at intermediate levels

Denies address spoofing

Prevents IP source routing

CLIENT APPLICATIONS
ssh the basic login shell-like client program

sftp FTP-like program that works using SSH protocol

scp file copy program that acts like rcp

UTILITIES
Ssh-agent
Ssh-add
Ssh-keygen
Ssh-keyscan
Ssh-vulnkey
Also provides third party utilities like scanssh and sshguard

SITUATIONS WHERE
OPENSSH DOESNT
WORK
Effectiveness depends on the correct use

Compromised systems, particularly where root account is

compromised

Insecure or inappropriate directory settings

THANK YOU