On Thu, May 15, 2008 at 03:19:55PM +1200, Martin Langhoff wrote: > I am looking at hosts that are runing other linuxen that may have weak > keys now, or see those weak keys uploaded inadvertently in the future. > > Is there a straightforward way to get hosts that are !(Debian|Ubuntu) > to use that blacklist? PermitBlacklistedKeys support in openssh-server > seems to be a Debian/Ubuntu patch (and can't even find a mention of it > in the changelog).
I've uploaded the necessary patch to http://people.debian.org/~cjwatson/openssh-blacklist.diff. (I've also sent an earlier version of it upstream, but this is all very recent so don't expect it to be in any releases yet!) -- Colin Watson [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
