Re: where did www.debian.org/security/key-rollover/ go?
On Tue, May 13, 2008 at 08:20:55PM +0200, Rody wrote:
>
> In response to the latest security issue with ssl / ssh, i updated my packages
> with the new fixed versions of ssl. However the steps to regenerate the keys
> are not available on:
> www.debian.org/security/key-rollover/
After keys are regenerated and all old keys are removed, would a reboot
be in order to ensure that no apps are using old files that have been
unlinked but still open?
I don't suppose that new version of (was it ssh) in Sid that warns of
connections with weak keys will be backported to Etch as a security fix?
Doug.
Reply to: