{"id":"ajoergensen-openssh-server","name":"openssh-server","af_score":24.8,"security_score":64.5,"reliability_score":40.0,"what_it_does":"Provides the OpenSSH server implementation (sshd) for accepting SSH connections, authenticating users, and providing secure remote shell/SFTP/port forwarding capabilities on a host.","best_when":"You control the host environment (network, firewalling, account management) and can apply standard SSH hardening (keys, permissions, cipher/MAC/KEX policies, logging).","avoid_when":"You need an agent-friendly HTTP API, or you cannot enforce secure configuration practices (key-based auth, disabling weak algorithms, least-privilege accounts).","last_evaluated":"2026-04-04T19:39:48.444909+00:00","has_mcp":false,"has_api":false,"auth_methods":["Public key authentication","Password authentication (optional, configurable)","Keyboard-interactive (configurable)","Certificate-based auth (sshd supports SSH certificates, if configured)","Host-based authentication (configurable)"],"has_free_tier":false,"known_gotchas":["SSH is interactive by nature (prompts, TTY requirements) which can complicate automation if misconfigured.","Security depends heavily on sshd_config hardening; a misconfiguration can negate the security properties.","Host key verification and key management must be handled carefully in automated agents.","Rate limiting is not an API concern; connection limits and Fail2Ban-style tooling may be needed externally."],"error_quality":0.0}