Hello, I am posting this here as it should receive wide exposure.
http://lists.debian.org/debian-security-announce/2008/msg00152.html The bottom line(s): 1. If you run a Debian or derivative (yes, Ubuntu!) version that is based on etch or later, and 2a. If you generated an SSH/SSL key on this system or 2b. You created a signature using a openssl DSA key on this system Then it is likely that your key is weak/compromised. Please change it after installing a more recent "openssl". This does *not* apply to GPG/PGP keys. Regards, Kapil. -- _______________________________________________ To unsubscribe, email [EMAIL PROTECTED] with "unsubscribe <password> <address>" in the subject or body of the message. http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
