View Single Post
  #5   (View Single Post)  
Old 8th September 2011
comet--berkeley comet--berkeley is offline
Real Name: Richard
Package Pilot
 
Join Date: Apr 2009
Location: California
Posts: 142
Default Security breach at kernel.org - All DSA keys "Compromised"

Apparently all DSA keys created on a old Debian systems should be considered a liability.

http://rdist.root.org/2009/05/17/the...at-almost-was/

The Debian Security Advisory includes the following language:

"...all DSA keys ever used on affected Debian systems for signing or authentication purposes should be considered compromised"

http://www.debian.org/security/2008/dsa-1571

I went out to Google to see how to generate SSH keys ( search on: make ssh keys ).
Many of the articles suggest using ssh-keygen with DSA like this:

ssh-keygen -t dsa

http://pkeck.myweb.uga.edu/ssh/

http://www.cyberciti.biz/tips/ssh-pu...on-how-to.html

How many Debian/Ubuntu users created ssh keys like this and then did not change them?
Reply With Quote