Re: where did www.debian.org/security/key-rollover/ go?

To: Rody <rody@xs4all.nl>
Cc: debian-user@lists.debian.org
Subject: Re: where did www.debian.org/security/key-rollover/ go?
From: Joey Hess <joeyh@debian.org>
Date: Tue, 13 May 2008 18:49:40 -0400
Message-id: <[🔎] 20080513224940.GA13790@kodama.kitenet.net>
Mail-followup-to: Rody <rody@xs4all.nl>, debian-user@lists.debian.org
In-reply-to: <[🔎] 200805132020.55441.rody@xs4all.nl>
References: <[🔎] 200805132020.55441.rody@xs4all.nl>

Rody wrote:
> In response to the latest security issue with ssl / ssh, i updated my packages 
> with the new fixed versions of ssl. However the steps to regenerate the keys 
> are not available on:
> www.debian.org/security/key-rollover/
> as the security advisory tells us.
> According to google, the page did exist 4 hours ago, but right now it's a dead 
> link.

AFAICS, the page is not ready yet. "More to follow soon"

This page on the wiki has fairly complete instructions in the meantime:

http://wiki.debian.org/SSLkeys

> 1) remove all packages with ssl and ssh in the name, and reinstall them after 
> that. The nessesary keys should be created that way.

No, that will not work.

-- 
see shy jo

Attachment: signature.asc
Description: Digital signature

Reply to:

References:
- where did www.debian.org/security/key-rollover/ go?
  - From: Rody <rody@xs4all.nl>

Prev by Date: Re: Blocking Gmail ads
Next by Date: Re: where did www.debian.org/security/key-rollover/ go?
Previous by thread: Re: where did www.debian.org/security/key-rollover/ go?
Next by thread: Re: where did www.debian.org/security/key-rollover/ go?
Index(es):
- Date
- Thread