Re: openssl vulnerability and RSA keys

To: debian-user@lists.debian.org
Subject: Re: openssl vulnerability and RSA keys
From: "agenkin@gmail.com" <agenkin@gmail.com>
Date: Tue, 13 May 2008 17:05:11 -0700 (PDT)
Message-id: <[🔎] 175936fe-be7c-464f-9985-a192fbf500f1@y38g2000hsy.googlegroups.com>
References: <[🔎] 1210702558.15764.61.camel@corn.betterworld.us>

On May 13, 2:20 pm, Ross Boylan <RossBoy...@stanfordalumni.org> wrote:
> Does this mean that RSA keys for openssh should not be considered
> compromised?  If so, why the need to regenerate them?

On our systems the dowkd.pl script found weak DSA and RSA keys, both
as host keys, and as user-generated keypairs.  We've regenerated the
RSA keys as well.

Reply to:

Follow-Ups:
- Re: openssl vulnerability and RSA keys
  - From: "Nelson Castillo" <nelsoneci@gmail.com>

References:
- openssl vulnerability and RSA keys
  - From: Ross Boylan <RossBoylan@stanfordalumni.org>

Prev by Date: Are Cfengine keys affected by the recent OpenSSL vulnerability?
Next by Date: Re: Blocking Gmail ads
Previous by thread: openssl vulnerability and RSA keys
Next by thread: Re: openssl vulnerability and RSA keys
Index(es):
- Date
- Thread