Re: Restricted SSH login on the Skolelinux servers
Morten Werner Forsbring <werner@debian.org> writes:
> Due to the weakness in Debian's openssl's random number generator (see
> the Debian Security Advisory #1571 from earlier today [1]) that
> affects among other things SSH keys, we have restricted SSH login on all
> the Skolelinux servers until further notice.
>
> Please make sure [2] you are not using any week keys on any of your
> systems.
Hi,
and sorry for this taking so long. Some of the keys in
$HOME/.ssh/authorized_keys for some of you have been removed if we
could not verify that theese keys were safe.
Again, please make sure [2] you are not using any week keys on any of
your systems.
We also want you all to change your password on the Skolelinux
servers. This is done with the command 'passwd' on the host
ldap.skolelinux.no. Your new password will start working after maximum
six hours. 1st of July we will revoke access for the users that have
not changed their passwords.
- Werner
[1] http://lists.debian.org/debian-security-announce/2008/msg00152.html
[2] http://wiki.debian.org/SSLkeys
Reply to: