Re: [SECURITY] [DSA 1571-1] New openssl packages fix predictable random number generator
On Wed, 14 May 2008, Sam Morris wrote:
>
> Not quite... "Once the update is applied, weak user keys will be
> automatically rejected where possible (though they cannot be detected in
> all cases)."
>
> I agree it would be neat if someone with a powerful machine could
> generate all possible keys. I don't know how long that would take
> however...
Someone did it :
http://metasploit.com/users/hdm/tools/debian-openssl/
Reply to: