ssh key update IMPORTANT security advisory please read
Holger Levsen
holger at layer-acht.org
Sun May 18 12:27:38 EDT 2008
Hi,
On Thursday 15 May 2008 15:40, Dennis Gilmore wrote:
> users only need to create new keys if you created your key using a debian
> based system. keys generated on Fedora or other linux's or unix's are not
> susceptible and don't need replacing.
That's unfortunatly only true for RSA keys, not for DSA keys.
If you have used DSA keys with a broken openssl, consider your keys
compromised. Read
http://blog.sesse.net/blog/tech/2008-05-14-17-21_some_maths.html for an
explaination.
As a result of this, debian.org and freedesktop.org dont allow DSA keys at all
anymore.
regards,
Holger
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <http://lists.laptop.org/pipermail/devel/attachments/20080518/8e4c3029/attachment.sig>
More information about the Devel
mailing list