ssh Access from the internet
Jamon Camisso
jamon.camisso-H217xnMUJC0sA/PxXw9srA at public.gmane.org
Tue May 13 18:32:29 UTC 2008
Lennart Sorensen wrote:
> On Tue, May 13, 2008 at 10:21:46AM -0400, Alex Maynard wrote:
>> This seems kind of important -- do I interpret it correctly that anyone
>> using ssh keys on a debian based system, such as ubuntu, should now
>> recreate all their keys?
>
> I think all my keys were created on sarge or older. I will have to
> check though.
>
If you read the advisory, dsa ssh keys aren't the only thing you need to
replace: "Affected keys include SSH keys, OpenVPN keys, DNSSEC keys, and
key material for use in X.509 certificates and session keys used in
SSL/TLS connections. Keys generated with GnuPG or GNUTLS are not
affected, though."
I wonder which of the big security certificate companies use Debian Etch
to sell X.509 certificates...
Jamon
--
The Toronto Linux Users Group. Meetings: http://gtalug.org/
TLUG requests: Linux topics, No HTML, wrap text below 80 columns
How to UNSUBSCRIBE: http://gtalug.org/wiki/Mailing_lists
More information about the Legacy
mailing list