检查Paramiko是否重新交换密钥(rekeys)
Check if Paramiko re-exchanges the key (rekeys)
我们需要验证 SSH 连接应用程序中的密钥更新。
ensure that within SSH connections, the same session keys are used for a threshold of no longer than one hour, and each encryption key is used to protect no more than one gigabyte of data. After any of the thresholds are reached, a rekey needs to be performed
我们正在使用“Paramiko”进行 SSH 连接。如何在 Paramiko 中验证基于时间的阈值和数据包大小阈值并确保重新加密按预期工作。
对于基于数据的密钥更新,enable logging 并在日志中检查以下消息:
Rekeying (hit ... packets, ... bytes sent)
Paramiko 似乎不支持基于时间的密钥更新。
我们需要验证 SSH 连接应用程序中的密钥更新。
ensure that within SSH connections, the same session keys are used for a threshold of no longer than one hour, and each encryption key is used to protect no more than one gigabyte of data. After any of the thresholds are reached, a rekey needs to be performed
我们正在使用“Paramiko”进行 SSH 连接。如何在 Paramiko 中验证基于时间的阈值和数据包大小阈值并确保重新加密按预期工作。
对于基于数据的密钥更新,enable logging 并在日志中检查以下消息:
Rekeying (hit ... packets, ... bytes sent)
Paramiko 似乎不支持基于时间的密钥更新。