|
|
|
|
|
| SSL on Debian based Linux: Debian, *buntu, Kanotix, ...
Posted: 5/16/2008 4:07:59 PM | Anyone running a Debian based version of Linux, should immediately upgrade their versions of SSL and things dependent on SSL (such as SSH). Due to a misunderstanding, the keys generated by Debian based versions of SSL have been TERRIBLE for about the last 2 years. It is not hard to break the keys, something like 20 minutes of computations. Pretty much all of the Debian based versions of Linux have pages up about this problem now. Part of the upgrade is typically a package which generates new keys. I suppose it is possible that some old keys may not escape this update. One would normally think of this as a server only problem, but since SSH and HTTPS is involved, there can be cases where strictly user oriented keys need to be canceled and/or updated.
The guy at Debian who did this has already had his 1000 lashes, he doesn't need any more. But, if you are running any of the Debian based versions of Linux, you need to upgrade this encryption related stuff. Now! Before you head to the pub to have a beer. | |
|
| |
|
|
Home
login 
