DSA/DSS keys and DSA 1576-1/CVE-2008-0166.

To: debian-security@lists.debian.org
Subject: DSA/DSS keys and DSA 1576-1/CVE-2008-0166.
From: Kurt Roeckx <kurt@roeckx.be>
Date: Thu, 15 May 2008 00:40:51 +0200
Message-id: <[🔎] 20080514224051.GA31804@roeckx.be>

There seems to be some confusion going around about the effect of the
openssl issue on dsa keys.

>From what I understand, when using a DSA key and the random number used
to generate a signature is known, predictable, or used twice the private
key can be calculated.

So it seem to me that if a DSA key was ever used on a system which had
that openssl version and openssl was used to generate that random
number, you have to revoke that DSA key.  Even if that DSA key was
generated with a good version of openssl.

So my question is, does either the ssh client or server use openssl to
generate the random number used to sign?


Kurt

Reply to:

Follow-Ups:
- Re: DSA/DSS keys and DSA 1576-1/CVE-2008-0166.
  - From: Mario 'BitKoenig' Holbe <Mario.Holbe@TU-Ilmenau.DE>

Prev by Date: Re: openssl/openssh fixes for lenny (testing)
Next by Date: Re: [SECURITY] [DSA 1576-1] New openssh packages fix predictable randomness
Previous by thread: Re: openssl/openssh fixes for lenny (testing)
Next by thread: Re: DSA/DSS keys and DSA 1576-1/CVE-2008-0166.
Index(es):
- Date
- Thread