Re: ssl security desaster (was: Re: SSH keys: DSA vs RSA)

To: debian-devel@lists.debian.org
Subject: Re: ssl security desaster (was: Re: SSH keys: DSA vs RSA)
From: "Martin Langhoff" <martin.langhoff@gmail.com>
Date: Wed, 28 May 2008 11:32:16 +1200
Message-id: <[🔎] 46a038f90805271632l56658f34t882da63cc7d833bb@mail.gmail.com>
In-reply-to: <[🔎] 20080527231328.GB9397@riva.ucam.org>
References: <[🔎] 1210853087.16247.13.camel@localhost> <[🔎] 200805151520.12046.thijs@debian.org> <[🔎] 200805150915.57042.mgb-debian@yosemite.net> <[🔎] 20080526230904.GA21013@riva.ucam.org> <[🔎] 20080526234525.GI27035@ikki.ethgen.de> <[🔎] 20080527231328.GB9397@riva.ucam.org>

On Wed, May 28, 2008 at 11:13 AM, Colin Watson <cjwatson@debian.org> wrote:
> I think everyone involved did a wonderful job, especially given the
> appalling constraints they were under. There is a difference, though,
> between acknowledging the excellent work that was done and burying one's
> head in the sand claiming that nothing could possibly have been
> improved.

A wonderful job indeed. *Thanks* from this corner of the world to the
Debian + Ubuntu team involved. The efforts in getting it all done
while balancing the maturity of the SSH blacklist patches & scripts vs
risk have been excellent.

It was a hard day for everyone else too, but it is clear that it would
have been much worse without such careful handling of the situation.

cheers,

m
-- 
 martin.langhoff@gmail.com
 martin@laptop.org -- School Server Architect
 - ask interesting questions
 - don't get distracted with shiny stuff - working code first
 - http://wiki.laptop.org/go/User:Martinlanghoff

Reply to:

Follow-Ups:
- Thanks for the response on DSA-1571 OpenSSL vulnerability (was: ssl security desaster)
  - From: Ben Finney <bignose+hates-spam@benfinney.id.au>

References:
- ssl security desaster (was: Re: SSH keys: DSA vs RSA)
  - From: Martin Uecker <muecker@gwdg.de>
- Re: ssl security desaster (was: Re: SSH keys: DSA vs RSA)
  - From: Thijs Kinkhorst <thijs@debian.org>
- Re: ssl security desaster (was: Re: SSH keys: DSA vs RSA)
  - From: Mike Bird <mgb-debian@yosemite.net>
- Re: ssl security desaster (was: Re: SSH keys: DSA vs RSA)
  - From: Colin Watson <cjwatson@debian.org>
- Re: ssl security desaster (was: Re: SSH keys: DSA vs RSA)
  - From: Klaus Ethgen <Klaus@Ethgen.de>
- Re: ssl security desaster (was: Re: SSH keys: DSA vs RSA)
  - From: Colin Watson <cjwatson@debian.org>

Prev by Date: Re: ssl security desaster (was: Re: SSH keys: DSA vs RSA)
Next by Date: Re: Debian's eboard package
Previous by thread: Re: ssl security desaster (was: Re: SSH keys: DSA vs RSA)
Next by thread: Thanks for the response on DSA-1571 OpenSSL vulnerability (was: ssl security desaster)
Index(es):
- Date
- Thread