[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Master ssh fingerprint

On Mon, 2003-12-01 at 09:49, Marc Haber wrote:

> >Do you really think that one should use the old hostkeys again?
> Actually, yes. I trust the DSA not to allow a compromised system to be
> on the network.

Which is why they won't be re-using the old host keys.

Are you aware that the SSH host key comes from the host's private key?
Since the host was rooted, it must be assumed that the private keys were

If the Debian Admin team re-used those keys, the person(s) who broke
into the server could use the stolen keys to set up a man in the middle

Attachment: signature.asc
Description: This is a digitally signed message part

Reply to: