LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Slackware
User Name
Password
Slackware This Forum is for the discussion of Slackware Linux.

Notices



Reply
 
Search this Thread
Old 04-10-2014, 08:04 PM   #1
mpop
LQ Newbie
 
Registered: Feb 2014
Location: MD
Distribution: Slackware
Posts: 2

Rep: Reputation: Disabled
Question OpenSSH and OpenSSL


I been hearing some conflicting information about the OpenSSL issue as of late. So I thought I would ask here on the slackware forum.

My question is I heard that if you had a vulnerable openssl installed at the time you generated your openssh keys your keys would be vulnerable. And that you should regenerate them. Others have said that openssh does not use openssl. So my question is what is the low down, are my logins still vulnerable on the servers that I have my keys on?

My setup is Slackware 14.1 (I have, as of today, updated both the openssl and openssh packages) I have disabled all password logins to all computers I control (along with turning off root login via ssh)
 
Old 04-10-2014, 09:15 PM   #2
JWJones
Member
 
Registered: Jun 2009
Location: Cascadia
Distribution: Slackware, LinuxBBQ, OpenBSD, Mac OSX
Posts: 723

Rep: Reputation: 187Reputation: 187
This does not affect OpenSSH at all. See here straight from the man himself:

http://undeadly.org/cgi?action=artic...20140408063423
 
1 members found this post helpful.
Old 04-10-2014, 09:23 PM   #3
JWJones
Member
 
Registered: Jun 2009
Location: Cascadia
Distribution: Slackware, LinuxBBQ, OpenBSD, Mac OSX
Posts: 723

Rep: Reputation: 187Reputation: 187
Furthermore:

Quote:
After patching, private keys and certificates exposed to services running
this code (for example web/mail server SSL certificates) should be replaced
and old certificates revoked.

Only SSL/TLS services are affected. Software that uses libcrypto alone
is not affected. In particular, ssh/sshd are not affected and there
is no need to regenerate SSH host keys that have not otherwise been
exposed.
http://ftp.openbsd.org/pub/OpenBSD/p..._openssl.patch
 
1 members found this post helpful.
Old 04-10-2014, 09:33 PM   #4
mpop
LQ Newbie
 
Registered: Feb 2014
Location: MD
Distribution: Slackware
Posts: 2

Original Poster
Rep: Reputation: Disabled
Thanks guys, it is appreciated.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
AES for openssh and openssl powah Linux - Software 1 04-21-2008 09:59 AM
2048 bits for openssh and openssl powah Linux - Software 0 04-17-2008 04:16 PM
openssl og openssh? suse91pro Linux - Newbie 2 07-02-2007 01:05 AM
Is openssl used by openssh? servnov Linux - General 5 10-30-2005 01:31 PM
FC2 compiling openssl/openssh TSJoshB Fedora 4 07-04-2005 03:25 PM


All times are GMT -5. The time now is 03:43 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration