Hi All! Remember the Debian hack discovered one year ago (http://wiki.debian.org/SSLkeys)? A number of Debian distributions over a period of two years contained a flaw that resulted in a ridiculously small OpenSSL key space. All these keys had to be replaced, systems to be updated. Has anyone followed this up? Are there any statistics how many of these keys are still out there in the open?
Purely for reasons of research, I have been searching in the archives of Debian-based live Linux distributions for one of the old versions that actually could produce these keys but it seems that none of them does..... Cheers, Ingo ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
