Hello and welcome to the Friday, January 12, 2024 edition of the Sansonet Storm Center's Stormcast. My name is Johannes Ulrich and today I'm recording from Jacksonville, Florida.

Well, I had the links in yesterday's show notes, but forgot to mention it in the podcast itself.

Mark Baggett started producing a new YouTube series.

I think it's pretty good.

And the first episode that was made life yesterday.

Looks really exciting.

It's origin stories for your favorite infosec tools.

The first episode covers Security Onion and interviews the creator of Security Onion.

That's sort of the theme of these videos.

Mark will always interview the creator of sort of no one of those legendary Infosec tools, I think Medasploid with

H.D. Moore is next. For links, just check the IC website or yesterday's show notes.

And for anybody using OpenSH, take a look and make sure that you stop using DSA as a key algorithm for

OpenSH. OpenSH today announced that they will be removing DSA support from OpenSH over the next

year. Now, there are good reasons for that.

DSA is known to be weak.

It's based on Shah 1 Digest,

and, well, as they say in the announcement,

only has about an 80-bit worth of symmetric encryption equivalent security,

which certainly doesn't cut it anymore.

These days hasn't really been sort of the default in S-H forever, I think.

So definitely make sure that you are not using any DSA keys.

Juniper released 27 security bulletins fixing numerous vulnerabilities. A couple highlights that I

...