Bleeping Computer

Researchers extract RSA keys from SSH server signing errors

A team of academic researchers from universities in California and Massachusetts demonstrated that it’s possible under certain conditions for passive network attackers to retrieve secret RSA keys from ...
Linux Journal

Cipher Security: How to harden TLS and SSH

Encryption and secure communications are critical to our life on the Internet. Without the ability to authenticate and preserve secrecy, we cannot engage in commerce, nor can we trust the words of our ...
Ars Technica

Dangerous SHA-1 crypto function is about to die in SSH

Disabling the ssh-rsa type of key will be a big issue though for those using smartcards to authenticate. A big usecase of OpenPGP cards is authenticating over SSH, and not being able to do this ...