Skip to main content

Millions of developers could soon be exposed to MITM attacks as Github’s private SSH key has been published. Developers must accept a new host key when reconnecting. If this is not matched with the fingerprint published by Github, this enables the attack: https://github.blog/2023-03-23-we-updated-our-rsa-ssh-host-key/ #GitHub #MITM

We updated our RSA SSH host key | The GitHub Blog

At approximately 05:00 UTC on March 24, out of an abundance of caution, we replaced our RSA SSH host key used to secure Git operations for GitHub.com.
Mike Hanley (GitHub)
#Github #mitm
This entry was edited (1 year ago)

Lo, thar be cookies on this site to keep track of your login. By clicking 'okay', you are CONSENTING to this.