key rollover: dropbear, bincimap

To: debian-www@lists.debian.org
Cc: team@security.debian.org, pape@smarden.org
Subject: key rollover: dropbear, bincimap
From: Moritz Muehlenhoff <jmm@inutil.org>
Date: Fri, 16 May 2008 12:16:34 +0200
Message-id: <[🔎] 20080516101634.GB7470@inutil.org>

Another two packages:

dropbear
========
 
If you have /etc/ssh/*host* keys, either remove them, or follow the
openssh instructions below, first, before updating dropbear's
keys.

Dropbear's postinst converts existing openssh keys to dropbear format,
if it cannot find the dropbear host keys.

rm /etc/dropbear/*_host_key
dpkg-reconfigure dropbear
 
Note that keys that have been generated by Dropbear itself are not
vulnerable (it uses libtomcrypt rather than OpenSSL).


bincimap
========

The bincimap package automatically creates a self-signed certificate
through the openssl program for the bincimap-ssl service, and puts it
into /etc/ssl/certs/imapd.pem. To regenerate run:

rm -f /etc/ssl/certs/imapd.pem
dpkg-reconfigure bincimap

Reply to:

Prev by Date: key rollover: tor
Next by Date: Processed: Change email address
Previous by thread: Re: key rollover: tor
Next by thread: Processed: Change email address
Index(es):
- Date
- Thread