Reject vulnerable keys to mitigate Debian OpenSSL flaw

In 2008, Debian (and derived distributions such as Ubuntu) shipped an OpenSSL package with a flawed random number generator, causing OpenSSH to generate only a very limited set of keys which were subject to private half precomputation. To mitigate this, this patch checks key authentications against a blacklist of known-vulnerable keys, and adds a new ssh-vulnkey program which can be used to explicitly check keys against that blacklist. See CVE-2008-0166. Bug: https://bugzilla.mindrot.org/show_bug.cgi?id=1469 Last-Update: 2013-09-14 Patch-Name: ssh-vulnkey.patch
author: Colin Watson <cjwatson@ubuntu.com> 2014-02-09 16:09:50 +0000
committer: Colin Watson <cjwatson@debian.org> 2014-02-09 16:17:31 +0000
commit: 8909ff0e3cd07d1b042d1be1c8b8828dbf6c9a83 (patch)
tree: ebee4092f1411059e34da6f66b4ebd64f4411020 /ssh.1
parent: 07f2a771c490bd68cd5c5ea9c535705e93bd94f3 (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/ssh.1 b/ssh.1
index 62292cc09..66a7007d7 100644
--- a/ssh.1
+++ b/ssh.1
@@ -1447,6 +1447,7 @@ if an error occurred.
 .Xr ssh-agent 1 ,
 .Xr ssh-keygen 1 ,
 .Xr ssh-keyscan 1 ,
+.Xr ssh-vulnkey 1 ,
 .Xr tun 4 ,
 .Xr hosts.equiv 5 ,
 .Xr ssh_config 5 ,
author	Colin Watson <cjwatson@ubuntu.com>	2014-02-09 16:09:50 +0000
committer	Colin Watson <cjwatson@debian.org>	2014-02-09 16:17:31 +0000
commit	8909ff0e3cd07d1b042d1be1c8b8828dbf6c9a83 (patch)
tree	ebee4092f1411059e34da6f66b4ebd64f4411020 /ssh.1
parent	07f2a771c490bd68cd5c5ea9c535705e93bd94f3 (diff)

diff --git a/ssh.1 b/ssh.1 index 62292cc09..66a7007d7 100644 --- a/ssh.1 +++ b/ssh.1
@@ -1447,6 +1447,7 @@ if an error occurred.
1447	.Xr ssh-agent 1 ,	1447	.Xr ssh-agent 1 ,
1448	.Xr ssh-keygen 1 ,	1448	.Xr ssh-keygen 1 ,
1449	.Xr ssh-keyscan 1 ,	1449	.Xr ssh-keyscan 1 ,
		1450	.Xr ssh-vulnkey 1 ,
1450	.Xr tun 4 ,	1451	.Xr tun 4 ,
1451	.Xr hosts.equiv 5 ,	1452	.Xr hosts.equiv 5 ,
1452	.Xr ssh_config 5 ,	1453	.Xr ssh_config 5 ,