Re: Considering dropping ssh-vulnkey from openssh-client

To: debian-devel@lists.debian.org, debian-ssh@lists.debian.org
Subject: Re: Considering dropping ssh-vulnkey from openssh-client
From: Stephen Gran <sgran@debian.org>
Date: Sun, 15 Sep 2013 11:06:31 +0100
Message-id: <[🔎] 20130915100631.GA25292@varinia.lobefin.net>
Mail-followup-to: debian-devel@lists.debian.org, debian-ssh@lists.debian.org
In-reply-to: <[🔎] 20130914214913.GL480@riva.ucam.org>
References: <[🔎] 20130914214913.GL480@riva.ucam.org>

This one time, at band camp, Colin Watson said:
> I'm considering removing ssh-vulnkey in an upload of the Debian openssh
> package sometime soon, and would like feedback.

In my role as sysadmin for various places, I've used various wrappers
around your ssh-vulnkey code to check for weak keys and raise alerts and
so on.  I can't think of more than maybe one alert from those scripts,
after sorting out the initial mess of weak keys.  I won't mind if they
go away, and thank you for doing the work in the first place.

Cheers,
-- 
 -----------------------------------------------------------------
|   ,''`.                                            Stephen Gran |
|  : :' :                                        sgran@debian.org |
|  `. `'                        Debian user, admin, and developer |
|    `-                                     http://www.debian.org |
 -----------------------------------------------------------------

Attachment: signature.asc
Description: Digital signature

Reply to:

References:
- Considering dropping ssh-vulnkey from openssh-client
  - From: Colin Watson <cjwatson@debian.org>

Prev by Date: Re: Bug#722950: ITP: ssh-agent-filter -- filtering proxy for ssh-agent
Next by Date: Re: Bug#722950: ITP: ssh-agent-filter -- filtering proxy for ssh-agent
Previous by thread: Re: Considering dropping ssh-vulnkey from openssh-client
Next by thread: Bug#722973: ITP: golang-dns -- DNS protocol library for Go
Index(es):
- Date
- Thread