Re: openssl vulnerability and RSA keys

To: "agenkin@gmail.com" <agenkin@gmail.com>
Cc: debian-user@lists.debian.org
Subject: Re: openssl vulnerability and RSA keys
From: "Nelson Castillo" <nelsoneci@gmail.com>
Date: Tue, 13 May 2008 19:36:28 -0500
Message-id: <[🔎] 2accc2ff0805131736s5cdd017r919cc470701d1ba2@mail.gmail.com>
In-reply-to: <[🔎] 175936fe-be7c-464f-9985-a192fbf500f1@y38g2000hsy.googlegroups.com>
References: <[🔎] 1210702558.15764.61.camel@corn.betterworld.us> <[🔎] 175936fe-be7c-464f-9985-a192fbf500f1@y38g2000hsy.googlegroups.com>

On Tue, May 13, 2008 at 7:05 PM, agenkin@gmail.com <agenkin@gmail.com> wrote:
> On May 13, 2:20 pm, Ross Boylan <RossBoy...@stanfordalumni.org> wrote:
>  > Does this mean that RSA keys for openssh should not be considered
>  > compromised?  If so, why the need to regenerate them?
>
>  On our systems the dowkd.pl script found weak DSA and RSA keys, both
>  as host keys, and as user-generated keypairs.  We've regenerated the
>  RSA keys as well.

~$ ./dowkd.pl  user nelson
/home/nelson/.ssh/authorized_keys:1: weak key
/home/nelson/.ssh/id_rsa.pub:1: warning: no suitable blacklist

Fortunately I've had sshd turned off for some time. Ops...

N.-




-- 
http://arhuaco.org

Reply to:

Follow-Ups:
- Re: openssl vulnerability and RSA keys
  - From: Ron Johnson <ron.l.johnson@cox.net>

References:
- openssl vulnerability and RSA keys
  - From: Ross Boylan <RossBoylan@stanfordalumni.org>
- Re: openssl vulnerability and RSA keys
  - From: "agenkin@gmail.com" <agenkin@gmail.com>

Prev by Date: Re: Blocking Gmail ads
Next by Date: Re: Blocking Gmail ads
Previous by thread: Re: openssl vulnerability and RSA keys
Next by thread: Re: openssl vulnerability and RSA keys
Index(es):
- Date
- Thread