Just a quick note about this bug: this is not as easy as chmoding the file. The security bug here is that the file is the same for everyone so a man in the middle is possible with the actual configuration.
I'd like to provide a way to generate a new RSA key at installation: openssl genrsa > priv-key openssl rsa -text < priv-key You get "pub_mod", "pub_exp" and "priv_exp". I suppose that pub_sig is the signature of the public key with the private key. openssl rsa -pubout > pub-key openssl rsautl -in pub-key -pubin -sign -inkey priv-key I don't know why, but the last command does not work. If you know OpenSSL better than me, please help. :) I have also asked the question on xrdp-devel. -- BOFH excuse #34: (l)user error -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
