Colin Watson writes ("Re: Considering dropping ssh-vulnkey from
openssh-client"):
> That lists 53141 live hosts (0.52%) under the category "using Debian
> weak keys" (the percentage for TLS was 0.03%, close to your
> recollection). From the context of the rest of the
This one time, at band camp, Colin Watson said:
> I'm considering removing ssh-vulnkey in an upload of the Debian openssh
> package sometime soon, and would like feedback.
In my role as sysadmin for various places, I've used various wrappers
around your ssh-vulnkey code to check for weak keys and
Colin Watson wrote:
>On Sat, Sep 14, 2013 at 06:45:27PM -0400, Scott Kitterman wrote:
>> In the course of some research I was doing recently I recall running
>across a
>> survey that someone had done about SSH keys in use on the internet.
>My vague
>> recollection (it was completely tangentia
On Sat, Sep 14, 2013 at 06:45:27PM -0400, Scott Kitterman wrote:
> In the course of some research I was doing recently I recall running across a
> survey that someone had done about SSH keys in use on the internet. My vague
> recollection (it was completely tangential to what I was looking for)
On Saturday, September 14, 2013 22:49:13 Colin Watson wrote:
> I'm considering removing ssh-vulnkey in an upload of the Debian openssh
> package sometime soon, and would like feedback.
>
>
> What is ssh-vulnkey?
>
>
> I wrote ssh-vulnkey as part of the set of countermeasures
I'm considering removing ssh-vulnkey in an upload of the Debian openssh
package sometime soon, and would like feedback.
What is ssh-vulnkey?
I wrote ssh-vulnkey as part of the set of countermeasures implemented in
Debian and Ubuntu to mitigate
http://www.debian.org/security/
6 matches
Mail list logo
