From da162da0416abb367ea8a415eb90d072a01fa020 Mon Sep 17 00:00:00 2001 From: Colin Watson Date: Mon, 2 Jun 2008 13:04:55 +0000 Subject: Check compromised key blacklist in ssh or ssh-add, as well as in the server (LP: #232391). To override the blacklist check in ssh temporarily, use 'ssh -o UseBlacklistedKeys=yes'; there is no override for the blacklist check in ssh-add. --- debian/changelog | 4 ++++ 1 file changed, 4 insertions(+) (limited to 'debian/changelog') diff --git a/debian/changelog b/debian/changelog index d3651d9c0..cb05066eb 100644 --- a/debian/changelog +++ b/debian/changelog @@ -2,6 +2,10 @@ openssh (1:4.7p1-13) UNRELEASED; urgency=low * Add some helpful advice to the end of ssh-vulnkey's output if there are unknown or compromised keys (thanks, Dan Jacobson; closes: #483756). + * Check compromised key blacklist in ssh or ssh-add, as well as in the + server (LP: #232391). To override the blacklist check in ssh + temporarily, use 'ssh -o UseBlacklistedKeys=yes'; there is no override + for the blacklist check in ssh-add. -- Colin Watson Fri, 30 May 2008 23:26:25 +0100 -- cgit v1.2.3