Just a note to LEAF Bering-uClibc users about the heavily-discussed Debian security advice dsa-1571.
Software packages (namely openssl, sshd, dropbear and openvpn) build for LEAF Bering-uClibc are not affected by the recently found Debian OpenSSL vulnerability. So keys generated on a LEAF Bering-uClibc router are secure. Anyway, a Bering-uClibc router can be compromised, if you use keys build on one of the insecure systems (Debian, Ubuntu, etc), e.g. to login via ssh and authorized keys. So please doublecheck your router(s) and replace any vulnerable keys and certificates. See also: http://www.debian.org/security/2008/dsa-1571 - the original security advice http://lwn.net/Articles/282744/ - explaining (for CentOS) how a system can be affected by keys, even if the systems ssl key generation itself behaves well. on behalf of the Bering-uClibc team kp ------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2008. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/ ------------------------------------------------------------------------ leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
