On May 19, 2008, at 2:30 PM, Andrew Lentvorski wrote:
Have we forced the users to regenerate their keys on Sparky?
Sparky is running Sarge, which isn't vulnerable to creating bad keys.
We have Debian users. Any key generated by them in the last two years is suspect even if you're on another distribution. We probably need new keys for some people. At the very least, we need to check.
Yes, we could have users with the public half of weak keys in their ~/.ssh/authorized_keys... is there an easy way to check?
-- Joshua Penix http://www.binarytribe.com Binary Tribe Linux Integration Services & Network Consulting -- [email protected] http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-steer
