[TAG] Recent Debian SSH vulnerability
René Pfeiffer
lynx at luchs.at
Sat May 17 17:23:26 MSD 2008
On May 16, 2008 at 2027 -0400, Ben Okopnik appeared and said:
> Yeah, it's all the news now, so I figured I'd kick in my bit. :)
Bring it on. :)
> As those of you on staff are aware, we use SSH keyauth for our staff
> accounts. I've been running some checks for weak keys (for any of you
> that want to check your own,
> http://security.debian.org/project/extra/dowkd/dowkd.pl.gz is a
> detector), and - whoops! We had a few in the list. Gone now, of course.
> (Amit, please revise your keys and send them to me. :)
I will change all my keys, regardless of what the checking tools says.
Keys should be changed periodically anyway and since I need to replace
some I can also replace them all.
> We now return you to your scheduled programming.
Which is, for me, the last day of the Linux days in Vienna! :) The Linux
days/weeks are annual conferences all over Austria with lots of talks,
discussions and coffee (due to the OpenSSL thing ;).
Best,
Ren?.
--
)\._.,--....,'``. fL Let GNU/Linux work for you while you take a nap.
/, _.. \ _\ (`._ ,. R. Pfeiffer <lynx at luchs.at> + http://web.luchs.at/
`._.-(,_..'--(,_..'`-.;.' - System administration + Consulting + Teaching -
Got mail delivery problems? http://web.luchs.at/information/blockedmail.php
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.linuxgazette.net/mailman/private/tag/attachments/20080517/1bf864dc/attachment.pgp
More information about the TAG
mailing list