Re: blacklist.RSA-1024 missing?

To: debian-security@lists.debian.org
Subject: Re: blacklist.RSA-1024 missing?
From: Jan Tomasek <jan@tomasek.cz>
Date: Fri, 16 May 2008 17:04:24 +0200
Message-id: <[🔎] 482DA278.1090903@tomasek.cz>
In-reply-to: <[🔎] 20080515173209.GA9466@doorstop.net>
References: <[🔎] 20080515173209.GA9466@doorstop.net>

Hi,

Vineet Kumar wrote:

I'm a bit concerned about the many 1024-bit RSA keys I have on my
system.  To be on the safe side, I'm removing them and replacing them
with newly-generated 2048-bit keys.

I wonder though, why there's no blacklist.RSA-1024 in the

openssh-blacklist package?


I took RSA 1023, 1024, 2047bit key figerprints from:

http://metasploit.com/users/hdm/tools/debian-openssl/

and added them to the openssh-blacklist package:

http://staff.cesnet.cz/~semik/openssh-blacklist/


Best regards
--
-----------------------
Jan Tomasek aka Semik
http://www.tomasek.cz/

Reply to:

References:
- blacklist.RSA-1024 missing?
  - From: Vineet Kumar <vineet@doorstop.net>

Prev by Date: Re: SASL AUTH only check 8 first characters of the password
Next by Date: Re: Thanks to Debian OpenSSL developers
Previous by thread: Re: blacklist.RSA-1024 missing?
Next by thread: pr1
Index(es):
- Date
- Thread