On Thu, 2008-05-15 at 06:31 -0700, Darrin Chandler wrote: > Can you explain why that's not effective? Do you know ssh-vulnkey (or > the Perl script) does not reliably detect bad keys?
Just to ensure I have facts separated from co-workers just going on paranoid tangents, I checked again and asked those who noted it did not work exactly what happened now that the 'knee jerk' syndrome is over. 2 people might have botched the install (not a reliable indicator) 3 Did not have ordinary configurations (again, not a reliable indicator) 1 Reported weak keys weren't detected. So, I guess I can't be sure. I know that it didn't work for some but that might be due to human error. Things go badly when rushing :) What does seem correct is that the utility can't guess beyond the typical locations and names. Sorry for the ambiguity, --Tim -- Monkey + Typewriter = Echoreply ( http://echoreply.us )