View Single Post
  #5   (View Single Post)  
Old 8th September 2011
comet--berkeley comet--berkeley is offline
Real Name: Richard
Package Pilot
Join Date: Apr 2009
Location: California
Posts: 143
Default Security breach at - All DSA keys "Compromised"

Apparently all DSA keys created on a old Debian systems should be considered a liability.

The Debian Security Advisory includes the following language:

"...all DSA keys ever used on affected Debian systems for signing or authentication purposes should be considered compromised"

I went out to Google to see how to generate SSH keys ( search on: make ssh keys ).
Many of the articles suggest using ssh-keygen with DSA like this:

ssh-keygen -t dsa

How many Debian/Ubuntu users created ssh keys like this and then did not change them?
Reply With Quote