Re: Accepted openssh 1:4.7p1-9 (source all i386)

To: debian-ssh@lists.debian.org
Subject: Re: Accepted openssh 1:4.7p1-9 (source all i386)
From: Colin Watson <cjwatson@debian.org>
Date: Wed, 14 May 2008 16:17:31 +0100
Message-id: <[🔎] 20080514151731.GA25392@riva.ucam.org>
Mail-followup-to: debian-ssh@lists.debian.org
In-reply-to: <[🔎] 20080514051020.GA29763@kodama.kitenet.net>
References: <[🔎] E1Jvw16-0003ZX-LM@ries.debian.org> <[🔎] 20080513221823.GA10644@kodama.kitenet.net> <[🔎] 87wslxiu1w.fsf@windlord.stanford.edu> <[🔎] 20080514010859.GA28496@kodama.kitenet.net> <[🔎] 20080514014926.GM16645@riva.ucam.org> <[🔎] 20080514051020.GA29763@kodama.kitenet.net>

On Wed, May 14, 2008 at 01:10:20AM -0400, Joey Hess wrote:
> openssh-server checks for weak keys and offers to replace them. But what
> if you have a strong DSA host key, and have been using the broken libssl
> for years? My understanding (from irc, possibly very flawed) is that
> this effecively exposed the DSA host key to brute-forcing. So that key
> should also probably be replaced. Having ssh handle one case but not the
> other on upgrade could lead to a false sense of security..

This is technically true. However I believe that the DSA host key is
only actually used if the RSA host key is missing (or the client doesn't
want it for some reason), so I think it's academic and am not worrying
about it too much right now. At some point I think it makes sense to
stop generating a DSA host key by default; I doubt anyone would notice
the difference.

The above premise could use some verification, though; it's not obvious
from debug output and I haven't had time to check the source or the
protocol RFCs.

-- 
Colin Watson                                       [cjwatson@debian.org]

Reply to:

References:
- Accepted openssh 1:4.7p1-9 (source all i386)
  - From: Colin Watson <cjwatson@debian.org>
- Re: Accepted openssh 1:4.7p1-9 (source all i386)
  - From: Joey Hess <joeyh@debian.org>
- Re: Accepted openssh 1:4.7p1-9 (source all i386)
  - From: Russ Allbery <rra@debian.org>
- Re: Accepted openssh 1:4.7p1-9 (source all i386)
  - From: Joey Hess <joeyh@debian.org>
- Re: Accepted openssh 1:4.7p1-9 (source all i386)
  - From: Colin Watson <cjwatson@debian.org>
- Re: Accepted openssh 1:4.7p1-9 (source all i386)
  - From: Joey Hess <joeyh@debian.org>

Prev by Date: Bug#481192: openssh-server: openssl update with blacklists possibly breaks the system when the admin didn't read dsa mail
Next by Date: Re: Nice job, wankers!
Previous by thread: Re: Accepted openssh 1:4.7p1-9 (source all i386)
Next by thread: Re: Accepted openssh 1:4.7p1-9 (source all i386)
Index(es):
- Date
- Thread