Bug#481398: openssh-client: ssh-vulnkey does not report location of files containing compromised or unrecognized keys

[Colin Watson <cjwatson@debian.org>]

tags 481398 pending
thanks

On Thu, May 15, 2008 at 03:33:21PM -0400, Christopher Perry wrote:
> Package: openssh-client
> Version: 1:4.3p2-9etch1
> Severity: normal
> 
> The ssh-vulnkey program does not report which file a a bad key was found 
> in, making it tedious to locate offending keys.
> The attached patch adds the filename to the output of the ssh-vulnkey 
> command.

Thanks for your report and patch. Heiko Schlittermann also sent
something similar by private e-mail, which also reported the line number
as requested by A Mennucc. I've applied my own version which is fairly
similar to both, although I took slightly different approaches in a
couple of cases.

Cheers,

-- 
Colin Watson                                       [cjwatson@debian.org]