[Python-Dev] heads up on svn.python.org ssh keys - debian/ubuntu users may need new ones
Gregory P. Smith
greg at krypto.org
Tue May 13 20:33:53 CEST 2008
Heads up.
Debian screwed up. As a result all ssh and ssl keys generated in the
last 18 months on debian and ubuntu systems may be compromised due to
not using a good random number generator seed.
http://lists.debian.org/debian-security-announce/2008/msg00152.html
and http://www.links.org/?p=327
If you generated your python subversion ssh key during this time on a
machine fitting the description above, please consider replacing your
keys.
apt-get update ; apt-get upgrade on debian will provide you with a
ssh-vulnkey program that can be used to test if your ssh keys are
valid or not.
-gps
More information about the Python-Dev
mailing list