On Mon, 2003-12-01 at 09:49, Marc Haber wrote: > >Do you really think that one should use the old hostkeys again? > > Actually, yes. I trust the DSA not to allow a compromised system to be > on the network. Which is why they won't be re-using the old host keys. Are you aware that the SSH host key comes from the host's private key? Since the host was rooted, it must be assumed that the private keys were stolen. If the Debian Admin team re-used those keys, the person(s) who broke into the server could use the stolen keys to set up a man in the middle attack.
Attachment:
signature.asc
Description: This is a digitally signed message part