Mailing List Archive


[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [tlug] Debian OpenSSL critical security bug



2008/5/14 Gernot Hassenpflug <aikishugyo@example.com>:

> Just in case someone missed it: DSA-1571 means possibly the need to
> replace all OpenSSH and OpenVPN keys generated since sometime in 2006.
> GnuPG keys are not affected. Software to check if one's keys are weak
> is available (see post).
>
> http://www.debian.org/security/2008/dsa-1571

The lesson here is that distros should not add patches to upstream
sources that made fundamental changes. Now to teach my fellow Gentoo
developers that lesson... ;)

-- 
Cheers,
Josh


Home | Main Index | Thread Index

Home Page Mailing List Linux and Japan TLUG Members Links