[Klug-general] SSL bug
Karl Buckland
karl at digital-end.com
Thu May 22 11:17:40 BST 2008
It only regenerates standard keys that the system knows about. Many people
running servers have to generate keys/certificates for all sorts of other
reasons and those keys are not automatically regenerated.
2008/5/22 Andrew Miller (Spode) <spode at thinkbikes.com>:
> I'm running Ubuntu Server 8.04 and I did an update as soon as I heard about
> the fix. It *automatically* regenerated new keys for me. I just had to
> remove my server from my known_hosts file in order to login.
>
> Sure, it's a big issue - but did anyone actually exploit it? To be patched
> up before anyone has actually exploited it is pretty good. Microsoft vuln.
> are discovered and known for ages before repaired.
>
> But, I have to admit, (play devils advocate), it would certainly shake my
> confidence as an outsider...
>
> Spode
>
>
> On Thu, May 22, 2008 at 10:09 AM, Peter Frost <P.Frost at kent.ac.uk> wrote:
>
>> Colin McCarthy wrote:
>>
>> Karl, while it is good to highlight security issues and possible rub it
>>> in people's faces a little, can we all try and do it with the typing of rude
>>> words.
>>>
>>
>>
>> Absolutely!
>>
>> FART! BUM! BIGJOBS!
>>
>>
>> _______________________________________________
>> Kent mailing list
>> Kent at mailman.lug.org.uk
>> https://mailman.lug.org.uk/mailman/listinfo/kent
>>
>
>
> _______________________________________________
> Kent mailing list
> Kent at mailman.lug.org.uk
> https://mailman.lug.org.uk/mailman/listinfo/kent
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.lug.org.uk/pipermail/kent/attachments/20080522/9eb6a611/attachment.html
More information about the Kent
mailing list