[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#481187: openssh-client: Should recommend or depend on openssh-blacklist

Package: openssh-client
Version: 1:4.7p1-9
Severity: normal

It seems to me that openssh-client should at least recommend
openssh-blacklist, so that users can check their keys with ssh-vulnkey:

| % ssh-vulnkey id_dsa
| Unknown (no blacklist information): 1024 5c:d8:bd:23:6a:ef:b1:b6:16:c8:88:b1:56:3c:39:59 id_dsa.pub
| % sudo aptitude install openssh-blacklist
| [aptitude output snipped]
| % ssh-vulnkey id_dsa
| COMPROMISED: 1024 5c:d8:bd:23:6a:ef:b1:b6:16:c8:88:b1:56:3c:39:59 id_dsa.pub
| %

-- System Information:
Debian Release: lenny/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: i386 (i686)

Kernel: Linux
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages openssh-client depends on:
ii  adduser               3.107              add and remove users and groups
ii  debconf [debconf-2.0] 1.5.21             Debian configuration management sy
ii  dpkg                  1.14.19            package maintenance system for Deb
ii  libc6                 2.7-11             GNU C Library: Shared libraries
ii  libcomerr2            1.40.8-2           common error description library
ii  libedit2              2.9.cvs.20050518-4 BSD editline and history libraries
ii  libkrb53              1.6.dfsg.3-2       MIT Kerberos runtime libraries
ii  libncurses5           5.6+20080503-1     Shared libraries for terminal hand
ii  libssl0.9.8           0.9.8g-10          SSL shared libraries
ii  passwd                1:4.1.1-1          change and administer password and
ii  zlib1g                1:  compression library - runtime

Versions of packages openssh-client recommends:
ii  xauth                         1:1.0.3-1  X authentication utility

-- no debconf information

Reply to: