Bug#481336: marked as done (provide blacklists for RSA 1024/4096)

Fri, 25 Jul 2008 10:45:31 -0700 

Your message dated Fri, 25 Jul 2008 10:39:12 -0700
with message-id <[EMAIL PROTECTED]>
and subject line no 8192 for now
has caused the Debian Bug report #481336,
regarding provide blacklists for RSA 1024/4096
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)


-- 
481336: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=481336
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message --- 
Package: openssh-blacklist
Version: 0.1.0
Severity: normal

Hi folks,

there's a tarball of 32bit/le rsa 4096 key pairs at
<http://metasploit.com/users/hdm/tools/debian-openssl/>.

I'm trying to build a blacklist for these keys*. It would be
nice if one was included in the package.

[ * having some trouble. there are 32768 such keys, but the
    existing blacklist files are 3x as large. is this for other
    bit depths / endian? also, the ssh-vulnkey(1) manpage
    says lines must be 20 chars long and strip the first 12
    bytes, yet these blacklists are 38 chars long so
    presumably do not. ]


-- System Information:
Debian Release: lenny/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'stable'), (1, 'experimental')
Architecture: i386 (i686)

Kernel: Linux 2.6.24-1-486
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

openssh-blacklist depends on no packages.

Versions of packages openssh-blacklist recommends:
ii  openssh-client                1:4.7p1-9  secure shell client, an rlogin/rsh

-- no debconf information

--- End Message ---
--- Begin Message --- 
Version: 0.3

Since the -extra package has 1024 and 4096 now, I'm going to close this
bug report.  8192 blacklists will take a long time to prepare, and I'd
generally prefer to avoid doing it.  If someone feels very strongly
about it, please open a new bug report, and provide urls to a debdiff.
:)

Thanks,

-Kees

-- 
Kees Cook                                            @outflux.net

--- End Message ---

Reply via email to