ssh key update IMPORTANT security advisory please read

Holger Levsen holger at
Sun May 18 12:27:38 EDT 2008


On Thursday 15 May 2008 15:40, Dennis Gilmore wrote:
> users only need to create new keys if you created your key using a debian
> based system.  keys generated on Fedora or other linux's or unix's are not
> susceptible and don't need replacing.

That's unfortunatly only true for RSA keys, not for DSA keys.

If you have used DSA keys with a broken openssl, consider your keys 
compromised. Read for an 

As a result of this, and dont allow DSA keys at all 

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <>

More information about the Devel mailing list