# openvpn --config /etc/openvpn/openvpn.conf Thu Jun 19 01:56:08 2008 OpenVPN 2.1_rc7 i486-pc-linux-gnu [SSL] [LZO2] [EPOLL] built on Jun 11 2008 Enter Private Key Password: Thu Jun 19 01:56:10 2008 /usr/bin/openssl-vulnkey -q -b 1024 -m <modulus omitted> Thu Jun 19 01:56:10 2008 ERROR: '/etc/ssl/private/privkey.pem' is a known vulnerable key. See 'man openssl-vulnkey' for details. Thu Jun 19 01:56:10 2008 Exiting
by the way, openvpn.conf looks like ... dev tun client nobind ca /etc/ssl/certs/allCAs.pem cert /etc/ssl/certs/XXX.pem key /etc/ssl/private/privkey.pem cipher AES-128-CBC tls-client ... I tried to make modulus from my privkey and pass it to openssl-vulnkey, and it reports that the key is not blacklisted. The sample output from /usr/share/openssl-blacklist/blacklist.RSA-* shows that vulnerable keys's modulus strings are significantly shorter than one produced from my key. What might be wrong with that thing? How can I correct openssl- vulnkey call or simply disable it? The system is Ubuntu 8.04.1, openvpn-blacklist package is 0.1-0ubuntu0.8.04.1 -- openvpn-vulnkey disagrees with openssl-vulnkey https://bugs.launchpad.net/bugs/239640 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
