openssl vulnerability
By abate - Posted on May 14th, 2008
Here I come. Following from the DSA announcement I've regenerated the ssh/openssl keys for cduce.org.
apt-get update
apt-get upgrade
rm /etc/ssh/*
dpkg-reconfigure -plow openssh-server
apt-get upgrade
rm /etc/ssh/*
dpkg-reconfigure -plow openssh-server
One the user side:
first ssh to the remote machine and remove the for ~/.ssh/authorized_keys . This will lock you out if you don't remember the passowrd for that machine !
Then, you should remove your ssh keys (from you local machine), and regenerate them with:
ssh-keygen
ssh-copy-id <host>
ssh-copy-id <host>
At this point you should be able to login back on your remote host using the new ssh key.
Recent comments
15 hours 43 min ago
1 week 5 days ago
4 weeks 1 day ago
6 weeks 4 days ago
8 weeks 11 hours ago
37 weeks 3 days ago
41 weeks 2 days ago