[e-privacy] Debian flaw causes weak identity keys
Sanata
sanata at paranoici.org
Wed May 14 12:13:08 CEST 2008
Marco A. Calamari ha scritto:
> A bug in the Debian GNU/Linux distribution's OpenSSL package was
> announced today. This bug would allow an attacker to figure out private
> keys generated by these buggy versions of the OpenSSL library. Thus,
> all private keys generated by affected versions of OpenSSL must be
> considered to be compromised.
Pessimo :(
La vulnerabilita' si estende anche a gpg e dm-crypt che voi sappiate?
--
+---------------------------------------------------------------------+
| Sanata <sanata at paranoici.org> |
|GnuPG fingerprint: 1E6A 462A 27D0 E9A4 239D 19BC C301 C2EA 224F 5BC4 |
| (RSA/RMD 4096/160 ID: 0x224F5BC4 - ELG/AES 4096/256 ID: 0xB0DD2B35) |
+---------------------------------------------------------------------+
More information about the E-privacy
mailing list