Re: db.debian.org/password.html : Why ~/.ssh/id_dsa.pub to setup OpenSSH for RSA
On Thu, May 15, 2008 at 11:30:40PM +0200, Peter Palfrader wrote: On Thu, 15 May 2008, Norbert Preining wrote: On Do, 15 Mai 2008, Mike Hommey wrote: I beg to differ. This particular mail is important enough to be sent to d-d-a instead of d-i-a. I agree, dia is not what I would be subscribed to under normal circumstances, and with all the caos that type of announce is for dda. Which is why the initial mail about the issue went to both. If you read the first mail you will know where to find the rest. If you can't be bothered to read carefully when asked to (and lots can't) then I cannot help you. Asking to (temporarily) subscribe to another list to get the one important mail everyone cares about is not the proper way to do things IMHO. Mike -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: db.debian.org/password.html : Why ~/.ssh/id_dsa.pub to setup OpenSSH for RSA
On Do, 15 Mai 2008, Peter Palfrader wrote: I beg to differ. This particular mail is important enough to be sent to d-d-a instead of d-i-a. I agree, dia is not what I would be subscribed to under normal circumstances, and with all the caos that type of announce is for dda. Which is why the initial mail about the issue went to both. If you read the first mail you will know where to find the rest. If you can't be bothered to read carefully when asked to (and lots can't) then I cannot help you. Come on, should I now subscribe to dia only for one (1!!) email (or maybe 2) which are of general interest?? I did read the email, I saw the remark, and assumed that that was an oversight ... my failure. Best wishes Norbert --- Dr. Norbert Preining [EMAIL PROTECTED]Vienna University of Technology Debian Developer [EMAIL PROTECTED] Debian TeX Group gpg DSA: 0x09C5B094 fp: 14DF 2E6C 0307 BE6D AD76 A9C0 D2BF 4AA3 09C5 B094 --- NANHORON (n. medical) A tiny valve concealed in the inner ear which enables a deaf grandmother to converse quite normally when she feels like it, but which excludes completely anything that sounds like a request to help with laying the table. --- Douglas Adams, The Meaning of Liff -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: db.debian.org/password.html : Why ~/.ssh/id_dsa.pub to setup OpenSSH for RSA
Peter Palfrader skrev: On Thu, 15 May 2008, Norbert Preining wrote: On Do, 15 Mai 2008, Mike Hommey wrote: I beg to differ. This particular mail is important enough to be sent to d-d-a instead of d-i-a. I agree, dia is not what I would be subscribed to under normal circumstances, and with all the caos that type of announce is for dda. Which is why the initial mail about the issue went to both. If you read the first mail you will know where to find the rest. If you can't be bothered to read carefully when asked to (and lots can't) then I cannot help you. Yes you can, by resending these mails of general interest to d-d-a. DDs are required to subscribe to d-d-a and read it to keep informed. I don't recall a requirement to subscribe to d-i-a, the Developer's Reference doesn't even mention it. If you want all DDs to be aware of something, send stuff to d-d-a. (I did read that the initial mail said to look to d-i-a, but in that case, I'd rather miss your posts there, and get the information from IRC or something instead, than actually subscribing to yet another ML I don't really feel I need to add to my already way too many mailfolders.) Or, I suppose, you could send an URL to d-i-a's archived post to d-d-a, that might be enough for those who don't have that much interest in d-i-a (including me). (But then again, if you do that, you could as well include the whole post...) Perhaps someone should do that for everyone's benefit? Maybe even me, a relatively peripheral DD? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: db.debian.org/password.html : Why ~/.ssh/id_dsa.pub to setup OpenSSH for RSA
On Fri, May 16, 2008 at 08:41:25AM +0200, Norbert Preining wrote: On Do, 15 Mai 2008, Peter Palfrader wrote: I beg to differ. This particular mail is important enough to be sent to d-d-a instead of d-i-a. I agree, dia is not what I would be subscribed to under normal circumstances, and with all the caos that type of announce is for dda. Which is why the initial mail about the issue went to both. If you read the first mail you will know where to find the rest. If you can't be bothered to read carefully when asked to (and lots can't) then I cannot help you. Come on, should I now subscribe to dia only for one (1!!) email (or maybe 2) which are of general interest?? No. If you are expecting something on the list but do not want to subscribe, the list archives are always available: http://lists.debian.org/debian-infrastructure-announce Regards, -Roberto -- Roberto C. Sánchez http://people.connexer.com/~roberto http://www.connexer.com signature.asc Description: Digital signature
Re: db.debian.org/password.html : Why ~/.ssh/id_dsa.pub to setup OpenSSH for RSA
Hi, Considering recent issues, http://db.debian.org/password.html requires updated as s/id_dsa.pub/id_rsa.pub/. Discussion as below. Do I need to make rt thingy? I am not yet familiar with it. On Wed, May 14, 2008 at 07:50:29PM +0200, Luk Claes wrote: Osamu Aoki wrote: Hi, Recent openssl issue lead me to http://db.debian.org/password.html and made me wonder why script example uses DSA key while main text only talks about RSA key. The text talks about RSA keys as they are preferred over DSA keys. | Alternatively, you can do without a password and use PGP to manipulate your | LDAP information through the mail gateway and use SSH RSA Authentication to | access the servers. To setup OpenSSH for RSA you need to first generate a | private RSA key using ssh-keygen and select a good passphrase for it. Then send | the public portion of the key to the LDAP directory: | | gpg --clearsign ~/.ssh/id_dsa.pub | mail [EMAIL PROTECTED] | | NB: Only version 2 RSA keys are accepted. Version 1 RSA keys (i.e. identity.pub | files) will not work. If main text is s/RSA/RSA\/DSA/g , I understand script example but ... Is there any reason to use DSA key insted of RSA key(~/.ssh/id_rsa.pub) ? On the contrary, it's better to use RSA keys as they can be bigger and are faster. Ok, With today's announcement on Alioth and SSH by Roland Mas made me to use RSA anyway. FYI: | From: [EMAIL PROTECTED] | Subject: Mail Gateway failed: Message is not PGP signed: | To: [EMAIL PROTECTED] | Date: Thu, 15 May 2008 12:29:33 + | | Hello! | | Your request to the mail gateway is malformed, or an internal processing | error occured. The information below may help you, or the gateway | administrator to identify the problem. | | Error: Message is not PGP signed: | == Message Error: No PGP signature | | | Please email [EMAIL PROTECTED] if you have any questions. This is what I got for me sending DSA key. After sending RSA key, I got: | From: [EMAIL PROTECTED] | Subject: DB Change Request | To: Osamu Aoki [EMAIL PROTECTED] | Date: Thu, 15 May 2008 12:29:49 + | | Hello Osamu Aoki [EMAIL PROTECTED]! | | Your request to change your directory information has been processed. | Note that there is a propagation time for many of the entries so please | be patient. Here are the results: | | ssh-rsa | ... So this page needs to be updated. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: db.debian.org/password.html : Why ~/.ssh/id_dsa.pub to setup OpenSSH for RSA
On Thu, 15 May 2008, Osamu Aoki wrote: Considering recent issues, http://db.debian.org/password.html requires updated as s/id_dsa.pub/id_rsa.pub/. My mail to d-i-a said that you need to use RSA keys. You have read that, right? The page on db.d.o will get updated eventually, for now think of it as You need to be at least this smart to get your key into LDAP. weasel -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: db.debian.org/password.html : Why ~/.ssh/id_dsa.pub to setup OpenSSH for RSA
On Thu, May 15, 2008 at 03:03:55PM +0200, Peter Palfrader wrote: On Thu, 15 May 2008, Osamu Aoki wrote: Considering recent issues, http://db.debian.org/password.html requires updated as s/id_dsa.pub/id_rsa.pub/. My mail to d-i-a said that you need to use RSA keys. You have read that, right? Yes. The page on db.d.o will get updated eventually, for now think of it as You need to be at least this smart to get your key into LDAP. Good. I tried DSA key before you send the mail though :-) Osamu -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: db.debian.org/password.html : Why ~/.ssh/id_dsa.pub to setup OpenSSH for RSA
On Thu, May 15, 2008 at 03:03:55PM +0200, Peter Palfrader [EMAIL PROTECTED] wrote: On Thu, 15 May 2008, Osamu Aoki wrote: Considering recent issues, http://db.debian.org/password.html requires updated as s/id_dsa.pub/id_rsa.pub/. My mail to d-i-a said that you need to use RSA keys. You have read that, right? This mail should have been sent to d-d-a, really. Mike -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: db.debian.org/password.html : Why ~/.ssh/id_dsa.pub to setup OpenSSH for RSA
On Thu, 15 May 2008, Mike Hommey wrote: On Thu, May 15, 2008 at 03:03:55PM +0200, Peter Palfrader [EMAIL PROTECTED] wrote: On Thu, 15 May 2008, Osamu Aoki wrote: Considering recent issues, http://db.debian.org/password.html requires updated as s/id_dsa.pub/id_rsa.pub/. My mail to d-i-a said that you need to use RSA keys. You have read that, right? This mail should have been sent to d-d-a, really. No. the original mail to d-d-a explicitly said that all future mails, especially this, will be posted to d-i-a. dia is the correct mailinglist for this. weasel -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: db.debian.org/password.html : Why ~/.ssh/id_dsa.pub to setup OpenSSH for RSA
On Thu, May 15, 2008 at 05:11:30PM +0200, Peter Palfrader [EMAIL PROTECTED] wrote: On Thu, 15 May 2008, Mike Hommey wrote: On Thu, May 15, 2008 at 03:03:55PM +0200, Peter Palfrader [EMAIL PROTECTED] wrote: On Thu, 15 May 2008, Osamu Aoki wrote: Considering recent issues, http://db.debian.org/password.html requires updated as s/id_dsa.pub/id_rsa.pub/. My mail to d-i-a said that you need to use RSA keys. You have read that, right? This mail should have been sent to d-d-a, really. No. the original mail to d-d-a explicitly said that all future mails, especially this, will be posted to d-i-a. dia is the correct mailinglist for this. I beg to differ. This particular mail is important enough to be sent to d-d-a instead of d-i-a. Mike -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: db.debian.org/password.html : Why ~/.ssh/id_dsa.pub to setup OpenSSH for RSA
On Do, 15 Mai 2008, Mike Hommey wrote: I beg to differ. This particular mail is important enough to be sent to d-d-a instead of d-i-a. I agree, dia is not what I would be subscribed to under normal circumstances, and with all the caos that type of announce is for dda. Best wishes Norbert --- Dr. Norbert Preining [EMAIL PROTECTED]Vienna University of Technology Debian Developer [EMAIL PROTECTED] Debian TeX Group gpg DSA: 0x09C5B094 fp: 14DF 2E6C 0307 BE6D AD76 A9C0 D2BF 4AA3 09C5 B094 --- BISHOP'S CAUNDLE An opening gambit before a game of chess whereby the missing pieces are replaced by small ornaments from the mantelpiece. --- Douglas Adams, The Meaning of Liff -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: db.debian.org/password.html : Why ~/.ssh/id_dsa.pub to setup OpenSSH for RSA
On Thu, 15 May 2008, Norbert Preining wrote: On Do, 15 Mai 2008, Mike Hommey wrote: I beg to differ. This particular mail is important enough to be sent to d-d-a instead of d-i-a. I agree, dia is not what I would be subscribed to under normal circumstances, and with all the caos that type of announce is for dda. Which is why the initial mail about the issue went to both. If you read the first mail you will know where to find the rest. If you can't be bothered to read carefully when asked to (and lots can't) then I cannot help you. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
db.debian.org/password.html : Why ~/.ssh/id_dsa.pub to setup OpenSSH for RSA
Hi, Recent openssl issue lead me to http://db.debian.org/password.html and made me wonder why script example uses DSA key while main text only talks about RSA key. | Alternatively, you can do without a password and use PGP to manipulate your | LDAP information through the mail gateway and use SSH RSA Authentication to | access the servers. To setup OpenSSH for RSA you need to first generate a | private RSA key using ssh-keygen and select a good passphrase for it. Then send | the public portion of the key to the LDAP directory: | | gpg --clearsign ~/.ssh/id_dsa.pub | mail [EMAIL PROTECTED] | | NB: Only version 2 RSA keys are accepted. Version 1 RSA keys (i.e. identity.pub | files) will not work. If main text is s/RSA/RSA\/DSA/g , I understand script example but ... Is there any reason to use DSA key insted of RSA key(~/.ssh/id_rsa.pub) ? Just curious, Osamu -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: db.debian.org/password.html : Why ~/.ssh/id_dsa.pub to setup OpenSSH for RSA
Osamu Aoki wrote: Hi, Recent openssl issue lead me to http://db.debian.org/password.html and made me wonder why script example uses DSA key while main text only talks about RSA key. The text talks about RSA keys as they are preferred over DSA keys. | Alternatively, you can do without a password and use PGP to manipulate your | LDAP information through the mail gateway and use SSH RSA Authentication to | access the servers. To setup OpenSSH for RSA you need to first generate a | private RSA key using ssh-keygen and select a good passphrase for it. Then send | the public portion of the key to the LDAP directory: | | gpg --clearsign ~/.ssh/id_dsa.pub | mail [EMAIL PROTECTED] | | NB: Only version 2 RSA keys are accepted. Version 1 RSA keys (i.e. identity.pub | files) will not work. If main text is s/RSA/RSA\/DSA/g , I understand script example but ... Is there any reason to use DSA key insted of RSA key(~/.ssh/id_rsa.pub) ? On the contrary, it's better to use RSA keys as they can be bigger and are faster. Cheers Luk -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: db.debian.org/password.html : Why ~/.ssh/id_dsa.pub to setup OpenSSH for RSA
On Wed, 2008-05-14 at 19:50 +0200, Luk Claes wrote: Osamu Aoki wrote: Hi, Recent openssl issue lead me to http://db.debian.org/password.html and made me wonder why script example uses DSA key while main text only talks about RSA key. The text talks about RSA keys as they are preferred over DSA keys. I assume Osamu was confused by the fact that this paragraph mentions RSA consistently: | use SSH RSA Authentication to | access the servers. To setup OpenSSH for RSA you need to first generate a | private RSA key using ssh-keygen and select a good passphrase for it. Then send | the public portion of the key to the LDAP directory: and then suggests using the following: | gpg --clearsign ~/.ssh/id_dsa.pub | mail [EMAIL PROTECTED] ^^^ in order to send your /RSA/ key :) (I'd guess the preceding text mentioned DSA at one point). Adam -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]