Comments on: Lucky Day

By: Mark

Mark — Mon, 16 Mar 2009 15:46:12 +0000

Well the vulnkey tool's been out for a while and still says my keys were clean. *shrug* I guess since my new keys are working fine the why is not all that important (ran across numerous threads of people continuing to have problems after the upgrade). As for CofCB, all I knew before I read it was there was a movie of it when I was a kid. A movie I wasn't allowed to watch and when I was a kid I had a hankering to see. As I turned into the old man I am today, I forgot about it. Then at the last CRPL annual book sale I found a copy. As they sell books at $5 per box, I figured what the heck and picked it up. Having now read the book, I can say it's much better than Flintstone porn but I can see how people might hold that opinion.

By: Dan

Dan — Mon, 16 Mar 2009 15:34:06 +0000

I had some keys that were ok when the vulnkey tool was first release, but were tagged as compromised a few weeks later. I think their net got wider as the crypto kids figured out what their data set encompassed.

P.S– CotCB? Honestly? It’s the Flintstones with porn, you know?

By: Mark

Mark — Mon, 16 Mar 2009 15:27:35 +0000

I thought of that and checked my keys with ssh-vulnkey but it told me they were not blacklisted. So I wouldn't say that was the problem but I don't know for sure as that does seem like the most likely cause.

By: Dan

Dan — Mon, 16 Mar 2009 14:11:33 +0000

So, was the SSH keys debacle due to the “blacklisted” Debian keys? Debian had a predictable crypto vulnerability a while back, and any keys made during that window have been revoked. And since Ubuntu is downstream from Debian, you probably caught it. I think there was a flag you could use to for ssh to use the key with a warning … but rebuilding them is still the best option. A pain, to be sure, but security always is.

By: manzabar (Mark)

manzabar (Mark) — Sat, 14 Mar 2009 07:35:43 +0000

New blog post: Lucky Day http://tinyurl.com/dh4uvj