SSH DSA logins on crank.

Holger Levsen holger at layer-acht.org
Tue May 20 07:31:46 EDT 2008


Hi,

On Tuesday 20 May 2008 04:08, Bernie Innocenti wrote:
> Hopefully this doesn't mean that the _private_ DSA key can be
> compromised if the _public_ key was copied on a Debian/Ubuntu machine.

Not by copying to, but by using with, yes, unfortunatly.

Read http://blog.sesse.net/blog/tech/2008-05-14-17-21_some_maths.html - in 
short, if the randomness is not really random, DSA can be attacked rather 
easily. That's why debian.org and freedesktop.org don't allow DSA keys at all 
anymore. 


regards,
	Holger
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <http://lists.laptop.org/pipermail/devel/attachments/20080520/a8c2c017/attachment.sig>


More information about the Devel mailing list