[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: [SECURITY] [DSA 1571-1] New openssl packages fix predictable random number generator

On Wed, 14 May 2008, Sam Morris wrote:

> 
> Not quite... "Once the update is applied, weak user keys will be 
> automatically rejected where possible (though they cannot be detected in 
> all cases)."
> 
> I agree it would be neat if someone with a powerful machine could 
> generate all possible keys. I don't know how long that would take 
> however...

Someone did it :
http://metasploit.com/users/hdm/tools/debian-openssl/
Reply to: