* James Miller:
>From what I understand ssh-vulnkey only check to see if a key is listed
>in the blacklist (already compromised). Is there any way to
>empirically test whether a key is vulnerable or not?
All vulnerable keys should be contained in the blacklist. In other
words, the blacklist sho
Alex Samad wrote:
On Thu, May 15, 2008 at 07:43:13PM -0400, Chris Adams wrote:
On May 15, 2008, at 6:25 PM, Alex Samad wrote:
is there away to check x509 certs with these tools ?
Yes - the wiki has one (http://wiki.debian.org/SSLkeys) but you might
prefer the openssl-blacklis
On Thu, May 15, 2008 at 09:03:24AM -0400, Noah Meyerhans wrote:
> On Thu, May 15, 2008 at 11:08:58AM +0300, Mikko Rapeli wrote:
> > I think, and hope, Debian openssh packages will be updated too.
>
> Yes, expect it within hours.
I'm curious... is there a way to get ssh-vulnkey to print out the li
On Thu, May 15, 2008 at 09:31:25PM -0300, Felipe Augusto van de Wiel (faw)
wrote:
> Speaking about that, are there plans to deploy
> openssl-blacklist in Debian as an official package?
I'd be happy to get the Ubuntu blacklists into Debian -- honestly I
haven't had time yet (travelling, Ubun
On Thu, May 15, 2008 at 09:31:25PM -0300, Felipe Augusto van de Wiel (faw)
wrote:
> On 15-05-2008 20:43, Chris Adams wrote:
> >
> > On May 15, 2008, at 6:25 PM, Alex Samad wrote:
> >> is there away to check x509 certs with these tools ?
> >
> > Yes - the wiki has one (http://wiki.debian.org/SSLk
On Thu, May 15, 2008 at 07:43:13PM -0400, Chris Adams wrote:
>
> On May 15, 2008, at 6:25 PM, Alex Samad wrote:
>> is there away to check x509 certs with these tools ?
>
> Yes - the wiki has one (http://wiki.debian.org/SSLkeys) but you might
> prefer the openssl-blacklist package which Ubuntu pre
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On 15-05-2008 20:43, Chris Adams wrote:
>
> On May 15, 2008, at 6:25 PM, Alex Samad wrote:
>> is there away to check x509 certs with these tools ?
>
> Yes - the wiki has one (http://wiki.debian.org/SSLkeys) but you might
> prefer the openssl-blackl
On May 15, 2008, at 6:25 PM, Alex Samad wrote:
is there away to check x509 certs with these tools ?
Yes - the wiki has one (http://wiki.debian.org/SSLkeys) but you might
prefer the openssl-blacklist package which Ubuntu prepared:
https://launchpad.net/ubuntu/+source/openssl-blacklist/
It
On Thu, May 15, 2008 at 09:52:10AM +0200, Vladislav Kurz wrote:
> Hello all,
>
> thanks for the quick response to the SSL bug and for providing ssh-vulnkey
> and
> dokuwd.pl. SSH-VULNKEY produces funny output when processing authorized_keys
> with additional options like from="host", command="s
On Thu, May 15, 2008 at 11:08:58AM +0300, Mikko Rapeli wrote:
> > It would be also helpful to print the line as dokuwd.pl does.
> > Is there any repository with newer versions of ssh-vulnkey or dokuwd.pl ?
>
> Try the Ubuntu version which contains a fixed ssh-vulnkey (
> http://www.ubuntu.com/usn/
On Thu, May 15, 2008 at 09:52:10AM +0200, Vladislav Kurz wrote:
> It would be also helpful to print the line as dokuwd.pl does.
> Is there any repository with newer versions of ssh-vulnkey or dokuwd.pl ?
Try the Ubuntu version which contains a fixed ssh-vulnkey (
http://www.ubuntu.com/usn/usn-612-
Hello all,
thanks for the quick response to the SSL bug and for providing ssh-vulnkey and
dokuwd.pl. SSH-VULNKEY produces funny output when processing authorized_keys
with additional options like from="host", command="something to do",
no-agent-forwarding, etc...
Instead of the file name it pr
12 matches
Mail list logo
