Re: SSH keys: DSA vs RSA (was: Alioth and SSH: restored)

To: debian-devel@lists.debian.org
Subject: Re: SSH keys: DSA vs RSA (was: Alioth and SSH: restored)
From: "Steinar H. Gunderson" <sgunderson@bigfoot.com>
Date: Thu, 15 May 2008 01:53:55 +0200
Message-id: <[🔎] 20080514235355.GA10391@uio.no>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 20080514232237.GA31252@moregruel.net>
References: <87skwkg97p.fsf@mirexpress.internal.placard.fr.eu.org> <[🔎] 87skwky1vb.fsf@benfinney.id.au> <[🔎] 20080514231226.GA4481@crustytoothpaste.ath.cx> <[🔎] 20080514232237.GA31252@moregruel.net>

On Wed, May 14, 2008 at 06:22:37PM -0500, Steve Greenland wrote:
>> Therefore, anyone who had a DSA key has had it compromised...
> Shouldn't that be "anyone who had a DSA key *created by the flawed
> version of openssl* has had it compromised..."? Or are you asserting
> something stronger?

No. Any key who had a single DSA signature created by the flawed version of
OpenSSL should be considered compromised. DSA requires a secret, random
number as part of the signature process; if someone figures it out, or you
use the same number twice, the entire secret key falls.

/* Steinar */
-- 
Homepage: http://www.sesse.net/

Reply to:

Follow-Ups:
- Re: SSH keys: DSA vs RSA (was: Alioth and SSH: restored)
  - From: nicolas vigier <boklm@mars-attacks.org>

References:
- SSH keys: DSA vs RSA (was: Alioth and SSH: restored)
  - From: Ben Finney <bignose+hates-spam@benfinney.id.au>
- Re: SSH keys: DSA vs RSA (was: Alioth and SSH: restored)
  - From: "brian m. carlson" <sandals@crustytoothpaste.ath.cx>
- Re: SSH keys: DSA vs RSA (was: Alioth and SSH: restored)
  - From: Steve Greenland <steveg@moregruel.net>

Prev by Date: Re: SSH keys: DSA vs RSA (was: Alioth and SSH: restored)
Next by Date: Re: SSH keys: DSA vs RSA (was: Alioth and SSH: restored)
Previous by thread: Re: SSH keys: DSA vs RSA (was: Alioth and SSH: restored)
Next by thread: Re: SSH keys: DSA vs RSA (was: Alioth and SSH: restored)
Index(es):
- Date
- Thread