Grey bar Blue bar
Share this:

Tue, 13 May 2008

If you run Debian (or a Debian Derivative, like Ubuntu)...

Then you probably should get on this one... [Problems with Random Number Generator]

While it looks like an arb openssl bug, 2 seconds of reading should get you to:


It is strongly recommended that all cryptographic key material which has been generated by OpenSSL versions starting with 0.9.8c-1 on Debian systems is recreated from scratch.


Affected keys include SSH keys, OpenVPN keys, DNSSEC keys, and key material for use in X.509 certificates and session keys used in SSL/TLS connections. -snip-

Note that even if you upgraded the package, you probably need to regenerate your old keys..


PS.. Sorry about the loooooong blog silence.. theres been lots of coolness, but most of the guys have actually had their heads down on projects, and either havnt been blogging, or have blogged -> but we would get killed if we spake about it..