Re: Debian OpenSSL Weak Key Detector (dowkd) version 0.9

To: debian-security@lists.debian.org
Subject: Re: Debian OpenSSL Weak Key Detector (dowkd) version 0.9
From: Florian Weimer <fw@deneb.enyo.de>
Date: Wed, 21 May 2008 09:01:42 +0200
Message-id: <[🔎] 87bq30kund.fsf@mid.deneb.enyo.de>
In-reply-to: <[🔎] 87mymno59n.fsf@mid.deneb.enyo.de> (Florian Weimer's message of "Sun, 18 May 2008 20:07:16 +0200")
References: <[🔎] 87mymno59n.fsf@mid.deneb.enyo.de>

* Florian Weimer:

> I've just uploaded a new version of dowkd.pl to the usual place:
>
>   <http://security.debian.org/project/extra/dowkd/dowkd.pl.gz>
>   <http://security.debian.org/project/extra/dowkd/dowkd.pl.gz.asc>
>     (OpenPGP signature)

I've just released version 0.9.3, which contains the following changes
compared to the May 18 version (which was 0.9):

v0.9.3
  Add OpenSSH-RSA1-2048-*-LE blacklists
v0.9.2
  Use one ssh-keyscan invocation to gather host keys
  Add "quick" host check command
  Report consecutive unparsable lines only once
  Update help message; mention OpenSSH rsa1 2048 bit support
  Allow setting the destination port in "dowkd host"
  Display error if the script does not contain any blacklist
  Regenerate database upon crash (by setting the DB version last)
  Create a rsync-optimized compressed Perl script
v0.9.1
  Add a ChangeLog to the compiled Perl script
  Add data/OpenSSH-RSA-4096-*-LE blacklist
  Fix missing OpenSSH-RSA1-1024-64-LE blacklist

There was some inconsistency in the blacklist data and the help message,
but this has been fixed.

Reply to:

References:
- Debian OpenSSL Weak Key Detector (dowkd) version 0.9
  - From: Florian Weimer <fw@deneb.enyo.de>

Prev by Date: Re: openssh remote upgrade procedure?
Next by Date: Re: Accepted openssh-blacklist 0.3 (source all)
Previous by thread: Debian OpenSSL Weak Key Detector (dowkd) version 0.9
Next by thread: openssl-blacklist & two keys per one pid
Index(es):
- Date
- Thread