OpenSSH 10.4 released with post-quantum signatures and sandbox hardening

lwn.net · ⭐️ 8/10 · 2026-07-06

OpenSSH 10.4 was released, adding experimental support for a composite post-quantum signature scheme combining ML-DSA 44 and Ed25519. Additionally, on Linux, sshd will now refuse to start if SECCOMP or NO_NEW_PRIVS sandbox features are not enabled. This is significant because SSH is a critical infrastructure tool used for secure remote access worldwide; post-quantum signature support future-proofs SSH against potential quantum computer attacks. The stricter sandbox enforcement improves security by ensuring sshd runs in a confined environment, reducing the impact of potential vulnerabilities. The post-quantum signature scheme follows an IETF draft and combines ML-DSA 44 (a NIST-standardized lattice-based algorithm) with Ed25519. On Linux, if sshd is compiled with sandbox support and the system lacks SECCOMP or NO_NEW_PRIVS, the daemon will now fail to start instead of merely logging an error.

Background

OpenSSH is the most widely used implementation of the SSH protocol for secure remote login and file transfer. Post-quantum cryptography aims to develop cryptographic systems that are secure against both classical and quantum computers; ML-DSA (formerly Dilithium) is a lattice-based digital signature scheme standardized by NIST. SECCOMP (secure computing mode) and NO_NEW_PRIVS are Linux kernel features that help restrict the capabilities of processes, making them essential for sandboxing.

References

Read original