Wikipedia:Articles for deletion/SSH-MITM
- The following discussion is an archived debate of the proposed deletion of the article below. Please do not modify it. Subsequent comments should be made on the appropriate discussion page (such as the article's talk page or in a deletion review). No further edits should be made to this page.
The result was delete. JBW (talk) 23:33, 3 March 2021 (UTC)
SSH-MITM[edit]
[Hide this box] New to Articles for deletion (AfD)? Read these primers!
- SSH-MITM (edit | talk | history | protect | delete | links | watch | logs | views) – (View log)
- (Find sources: Google (books · news · scholar · free images · WP refs) · FENS · JSTOR · TWL)
Fails WP:GNG. Looks like advertising. Another editor makes a claim of possible COI. The Banner talk 09:41, 11 February 2021 (UTC)
If you came here because someone asked you to, or you read a message on another website, please note that this is not a majority vote, but instead a discussion among Wikipedia contributors. Wikipedia has policies and guidelines regarding the encyclopedia's content, and consensus (agreement) is gauged based on the merits of the arguments, not by counting votes.
However, you are invited to participate and your opinion is welcome. Remember to assume good faith on the part of others and to sign your posts on this page by adding ~~~~ at the end. Note: Comments may be tagged as follows: suspected single-purpose accounts:{{subst:spa|username}} ; suspected canvassed users: {{subst:canvassed|username}} ; accounts blocked for sockpuppetry: {{subst:csm|username}} or {{subst:csp|username}} . |
Extended content
|
---|
SSH-MITM is an open source project and not a commercial product. Please explain, why you are thinking it is advertising and it is not worth to be mentioned on Wikipedia. It uses the same license (LGPL-3.0) like Python Paramiko, which is the ssh implementtion. So the license can not be the problem. According to the Github Stars (https://github.com/ssh-mitm/ssh-mitm/stargazers), there are a lot of people already interested in this project and the project has over 4.000 downloads per month on Pypi. I think, this project does not need advertising. If you have suggestions how to improve the artice according to Wikipedias standards, please explain. — Preceding unsigned comment added by Rudolfstrauss (talk • contribs) 10:05, 11 February 2021 (UTC)
Note: This discussion has been included in the list of Software-related deletion discussions. Spiderone(Talk to Spider) 10:53, 11 February 2021 (UTC) it is not the amount of sources which is important, when there are reliable sources from known twitter uses in this topic or upvoted redit posts. The ssh topic is, even in the security community, very small. so there are not much sources. the project is young, but in the last weeks, SSH-MITM (in my opinion) becomes important. This tool is new and, compared to other ssh mitm tools, the most advanced. If people does not discuss about a tool, this does not mean, that the tool is not interesting. This could also mean, that the tool works and there is no need to discuss about the tool. A quick search with google, about 5 minutes: Project Website is in the top results (ok this does not count): https://www.google.com/search?channel=fs&client=ubuntu&q=ssh+mitm Twitter:
Redit has also posts:
Web: https://securityonline.info/ssh-mitm-intercepting-proxy-server-for-security-audits/ — Preceding unsigned comment added by Rudolfstrauss (talk • contribs) 11:04, 11 February 2021 (UTC)
Compared to other ssh server articles, SSH-MITM has more information about the project and the article is just a few hours old. For example WolfSSH is only a list of supported platforms and algorithms and has only 2 sources, which links to the website of wolfssh and the license. (Sorry for bashing on wolfssh)
Sorry, this is my first article on Wikipedia. :-( If you have done some research related to ssh-mitm, please add this information to wikipedia. This article should be a community project! Articles about ssh-mitm:
|
- Delete. Zero independent, reliable sources. Does not meet WP:GNG or WP:NSOFTWARE. - MrOllie (talk) 13:32, 11 February 2021 (UTC)
KeepDELETE Manfred.ruzicka (talk) 20:39, 12 February 2021 (UTC) — Manfred.ruzicka (talk • contribs) has made few or no other edits outside this topic.
Extended content
|
---|
NIST and MITRE added SSH-MITM as a reference for CVE-2020-14145. This is a vulnerability in OpenSSH up to Version 8.4.
I think this are reliable sources and due to the fact, that the latest Version of OpenSSH is affected by CVE-2020-14145, it is an important topic. Added a news article from Linuxnews.de to external links. Manfred.ruzicka (talk) 07:38, 13 February 2021 (UTC)
Is a vulnerability, which affects all versions of OpenSSH (even the latest) and information how to mitigate it not a public interest? SSH-MITM is, according to nist and mitre, the only public tool (and open source), which is able to check, if a ssh client is affected by CVE-2020-14145. Perhaps the creation of the page was not neccesary, but the intention was to provide more information and not advertisement. Is it better to move the information to OpenSSH or do you want, that this information should be completely deleted? You are always talking about reliable sources, social media and discussions. When it comes to vulnerabilities, the most reliable sources are mitre and nist. They are managing information about vulnerabilities and tools to audit them, but they don't discuss them. They only provide information, where you can find more information. Why do you think, that this two organisations are not reliable? There are links from social media like Twitter and reddit and then you are saying, they are not reliable. A lot of vulnerabilities are only mentioned on twitter and twitter,because the community relies on those tweets or reddit posts.
Manfred.ruzicka (talk) 11:47, 13 February 2021 (UTC)
You are always writing, that reliable sources are needed, but did not explain, why nist and mitre are not reliable. Please explain,why this both organisation are not reliable sources. There are other resources referenced on the nist Article. Can we add those as reference? Are this references reliable? They are also describing CVE-2020-14145 and tthe mechanism, which is implemented in SSH-MITM to check against the vulnerability. For example this report (pdf document): https://www.fzi.de/en/news/news/detail-en/artikel/fsa-2020-2-ausnutzung-eines-informationslecks-fuer-gezielte-mitm-angriffe-auf-ssh-clients/ When this is not a reliable source, what is a reliable source? Manfred.ruzicka (talk) 19:29, 13 February 2021 (UTC)
One Question to you: Is the content interesting to be merged in another page or do you want, that the content will be removed? I understand, that you think, SSH-MITM does not need it's own page, and this is ok for me. If merging is an alternative, in which article, do you recommend? Please, help to improve the content. You are all writing, that the content has no reliable sources or is not notable for its own page. You are all experienced wikipedia authors, so help us to learn how to write content. Please do not always say, that what we are doing is wrong without providing alternatives. A usefull suggestion could be: Perhaps the topic is not notable for its own page, but you can write about this topic on PAGENAME A bad suggestion is: The content is not notable - delete the content So please explain, what we can do with the content. Manfred.ruzicka (talk) 21:10, 13 February 2021 (UTC)
|
- Comment: The signatures here are slightly confusing. ~ Ase1estecharge-paritytime 07:50, 19 February 2021 (UTC)
Please add new comments below this notice. Thanks, Sandstein 10:50, 20 February 2021 (UTC)
- Note: This discussion has been included in the list of Computing-related deletion discussions. CAPTAIN RAJU(T) 11:35, 20 February 2021 (UTC)
- Note: This discussion has been included in the list of Software-related deletion discussions. CAPTAIN RAJU(T) 11:36, 20 February 2021 (UTC)
Keep DELETE because this is the most advanced audit tool for ssh to inspect the traffic. Other tools like https://github.com/jtesta/ssh-mitm can be used, but lacks most features like public key authentication or file manipulation, which are needed for advanced security audits. Jump Hosts like Teleport SSH (https://goteleport.com/teleport/docs/) or StringDM (https://www.strongdm.com/) are not designed for security audits. While they can be used to create audit logs, those logs are for security compliance, which is another use case. They also lacks feature which are useful for advanced penetration tests. Rudolfstrauss (talk) 10:43, 22 February 2021 (UTC) — Rudolfstrauss (talk • contribs) has made few or no other edits outside this topic.— Rudolfstrauss (talk • contribs) is a confirmed sock puppet of Manfred.ruzicka (talk • contribs).
Please add new comments below this notice. Thanks, Daniel (talk) 12:05, 1 March 2021 (UTC)
- Actually, I start to get the felling that more friends/staff are drafted in to work on the article. The Banner talk 12:07, 1 March 2021 (UTC)
DELETE I'm the author of ssh-mitm. Please verify my signature in my wikipedia profile.
- It is nice to have a page on wikiepdia and i feel honored, but the "considered for deletion" message is not positive for me, my motivation and my project :-(
- Side note: this is only a hobby project, because I'm interested in ssh.
- To "The Banner": perhaps you are right and some colleagues or persons who know me have created the page. Before this discussion ends in a "mud fight", please delete the page
Ruzima (talk) 13:36, 1 March 2021 (UTC)— Ruzima (talk • contribs) is a confirmed sock puppet of Manfred.ruzicka (talk • contribs).
- DELETE Just don't seem to be the reliable sources to demonstrate notability, and there seems to be a fairly obvious COI from two major contributors Dexxtrall (talk) 00:32, 2 March 2021 (UTC)
Comments by blocked socks
|
---|
I think it is time to stop the discussions, because the discussions are going to personal (not only on wikipedia) and are not good for the project. If you want to help, please be fair and do not delete comments on this page. SSH-MITM is an open source project for the community. If you want to help, than contribute to the project and let it earn a wikipedia page, when it is the right time. Ruzima (talk) 08:13, 2 March 2021 (UTC) Please be fair, when discussing SSH-MITM. I have also created a statement in my project: https://github.com/ssh-mitm/ssh-mitm/issues/42 Ruzima (talk) 08:59, 2 March 2021 (UTC)
Note. I'm not connected to the mentioned user in the github issue. I changed my opionion and I also recommends to delete the page. Manfred.ruzicka (talk) 12:22, 2 March 2021 (UTC)
I'm sorry for the author of ssh-mitm :-( — Preceding unsigned comment added by Herozero4 (talk • contribs) 13:31, 2 March 2021 (UTC)
|
- Delete + Comment - Oh dear, what a mess this discussion has become. From the start, this article clearly does not meet WP:GNG and WP:NSOFT, seeing that there's no secondary sources to check for me but GitHub (WP:UGC), an offical website for "Paramiko", a link to NIST.gov listing a vulnerability, and then another GitHub linking to the license of the software. Not to mention the conflict-of-interest problem, admitted off-site canvassing on Reddit and GitHub (!!!), and the revealed socking by a CheckUser (+endorsed by Yamla). I've already added {{Not a ballot}} notice, and have also tidied this mess up (incl. striking sock votes), while still being readable to another uninvolved user. theinstantmatrix (talk) 17:31, 3 March 2021 (UTC) edited 17:54, 3 March 2021 (UTC)
- The above discussion is preserved as an archive of the debate. Please do not modify it. Subsequent comments should be made on the appropriate discussion page (such as the article's talk page or in a deletion review). No further edits should be made to this page.