Apparently all DSA keys created on a old Debian systems should be considered a liability.
http://rdist.root.org/2009/05/17/the...at-almost-was/
The Debian Security Advisory includes the following language:
"...all DSA keys ever used on affected Debian systems for signing or authentication purposes should be considered compromised"
http://www.debian.org/security/2008/dsa-1571
I went out to Google to see how to generate SSH keys ( search on: make ssh keys ).
Many of the articles suggest using ssh-keygen with DSA like this:
ssh-keygen -t dsa
http://pkeck.myweb.uga.edu/ssh/
http://www.cyberciti.biz/tips/ssh-pu...on-how-to.html
How many Debian/Ubuntu users created ssh keys like this and then did not change them?