reset ssh keys, even if only a public key in fedora?

Till Maas opensource at till.name
Tue Aug 19 23:44:04 UTC 2008


On Tuesday 19 August 2008 18:36:27 Toshio Kuratomi wrote:

> 3) The Account System code will prevent you from uploading a DSA key.
> So if your key was DSA, you'll have to generate an RSA key and upload
> that.  This is due to the fact that we haven't found a 100% accurate way
> to find all DSA keys generated by the eak-Debian-random-number-packages.

The broken random generator was also used to generate RSA keys. According to

http://wiki.debian.org/SSLkeys#head-d841ac769390d013577ce3fd2be24b8cf5a74cfb

good DSA keys can be compromised when used with the broken random generator.

Regards,
Till
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 827 bytes
Desc: This is a digitally signed message part.
URL: <http://listman.redhat.com/archives/fedora-devel-list/attachments/20080820/cb28c314/attachment.sig>


More information about the fedora-devel-list mailing list