Re: openssh-blacklist for !Debian

To: Martin Langhoff <martin.langhoff@gmail.com>
Cc: debian developers <debian-devel@lists.debian.org>, Kees Cook <kees@outflux.net>, Jamie Strandboge <jamie@ubuntu.com>
Subject: Re: openssh-blacklist for !Debian
From: Colin Watson <cjwatson@debian.org>
Date: Fri, 16 May 2008 07:59:39 +0100
Message-id: <[🔎] 20080516065939.GO16645@riva.ucam.org>
Mail-followup-to: Martin Langhoff <martin.langhoff@gmail.com>, debian developers <debian-devel@lists.debian.org>, Kees Cook <kees@outflux.net>, Jamie Strandboge <jamie@ubuntu.com>
In-reply-to: <[🔎] 46a038f90805142019i48cfa6b7w90e7bafca82e6cd9@mail.gmail.com>
References: <[🔎] 46a038f90805142019i48cfa6b7w90e7bafca82e6cd9@mail.gmail.com>

On Thu, May 15, 2008 at 03:19:55PM +1200, Martin Langhoff wrote:
> I am looking at hosts that are runing other linuxen that may have weak
> keys now, or see those weak keys uploaded inadvertently in the future.
> 
> Is there a straightforward way to get hosts that are !(Debian|Ubuntu)
> to use that blacklist? PermitBlacklistedKeys support in openssh-server
> seems to be a Debian/Ubuntu patch (and can't even find a mention of it
> in the changelog).

I've uploaded the necessary patch to
http://people.debian.org/~cjwatson/openssh-blacklist.diff. (I've also
sent an earlier version of it upstream, but this is all very recent so
don't expect it to be in any releases yet!)

-- 
Colin Watson                                       [cjwatson@debian.org]

Reply to:

References:
- openssh-blacklist for !Debian
  - From: "Martin Langhoff" <martin.langhoff@gmail.com>

Prev by Date: Re: db.debian.org/password.html : Why ~/.ssh/id_dsa.pub to setup OpenSSH for RSA
Next by Date: Re: Sorting out mail-transport-agent mess
Previous by thread: openssh-blacklist for !Debian
Next by thread: [DSA 1571-1] Heimdal
Index(es):
- Date
- Thread