Re: [SECURITY] [DSA 1571-1] New openssl packages fix predictable random number generator

To: debian-security@lists.debian.org
Subject: Re: [SECURITY] [DSA 1571-1] New openssl packages fix predictable random number generator
From: Florian Weimer <fw@deneb.enyo.de>
Date: Tue, 13 May 2008 15:52:23 +0200
Message-id: <[🔎] 871w46wbu0.fsf@mid.deneb.enyo.de>
In-reply-to: <[🔎] 20080513134011.GD29145@beczulka> (Marcin Owsiany's message of "Tue, 13 May 2008 14:40:11 +0100")
References: <87od7az9v4.fsf@mid.deneb.enyo.de> <[🔎] 20080513134011.GD29145@beczulka>

* Marcin Owsiany:

> On Tue, May 13, 2008 at 02:06:39PM +0200, Florian Weimer wrote:
>> It is strongly recommended that all cryptographic key material which has
>> been generated by OpenSSL versions starting with 0.9.8c-1 on Debian
>> systems is recreated from scratch.
>
> Does openssh store the generation date in the SSH keypair?

As far as I can tell, it doesn't.  There is only the file date as an
indicator, which is pretty weak.

Reply to:

References:
- Re: [SECURITY] [DSA 1571-1] New openssl packages fix predictable random number generator
  - From: Marcin Owsiany <porridge@debian.org>

Prev by Date: Re: [SECURITY] [DSA 1571-1] New openssl packages fix predictable random number generator
Next by Date: Re: [SECURITY] [DSA 1571-1] New openssl packages fix predictable random number generator
Previous by thread: Re: [SECURITY] [DSA 1571-1] New openssl packages fix predictable random number generator
Next by thread: Re: [SECURITY] [DSA 1571-1] New openssl packages fix predictable random number generator
Index(es):
- Date
- Thread