OpenSSL Vulnerability for Debian

Debian has a wiki page on the OpenSSL key generation vulnerability. To fix your SSH keys:

aptitude update
aptitude dist-upgrade # regular upgrade is not sufficient
rm /etc/ssh/ssh_host_*
dpkg-reconfigure openssh-server

If you have any public-key-based authorizations setup, delete the keys and start over.

Advertisements

Leave a Reply

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s