Re: leakage of keys?

To: debian-security@lists.debian.org
Cc: Nicolas Rachinsky <deb-security-1@ml.turing-complete.org>
Subject: Re: leakage of keys?
From: Rene Mayrhofer <rene.mayrhofer@gibraltar.at>
Date: Wed, 14 May 2008 17:12:04 +0200
Message-id: <[🔎] 200805141712.11790.rene.mayrhofer@gibraltar.at>
In-reply-to: <[🔎] 20080514141706.GA7358@mid.pc5.i.0x5.de>
References: <[🔎] 20080514141706.GA7358@mid.pc5.i.0x5.de>

On Mittwoch, 14. Mai 2008, Nicolas Rachinsky wrote:
> Does this affect other protocols? ssl/ipsec/openvpn (with
> certificates)

IPSec: yes, most probably. To be sure when using open/strongswan, run 

rm /etc/ipsec.d/private/`hostname`Key.pem /etc/ipsec.d/certs/`hostname`Cert.pem
dpkg-reconfigure (open|strong)swan
/etc/init.d/ipsec restart

and re-create all manually generated X.509 certificates as well. All other 
uses of SSL (that includes OpenVPN) also seem to be vulnerable.

best regards,
Rene

-- 
-------------------------------------------------
Gibraltar firewall       http://www.gibraltar.at/

Attachment: signature.asc
Description: This is a digitally signed message part.

Reply to:

References:
- leakage of keys?
  - From: Nicolas Rachinsky <deb-security-1@ml.turing-complete.org>

Prev by Date: leakage of keys?
Next by Date: openssl / x509 certs
Previous by thread: leakage of keys?
Next by thread: openssl / x509 certs
Index(es):
- Date
- Thread