Re: Compromised host keys
From: Conor Daly (conor.daly_at_oceanfree.net)
Date: 11/05/03
- Previous message: Steven W. Orr: "RE: Problem with X11 forwarding."
- In reply to: Jim Cheetham: "Compromised host keys"
- Next in thread: Michael Young: "RE: Compromised host keys"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 5 Nov 2003 21:02:38 +0000 To: secureshell@securityfocus.com
On Wed, Nov 05, 2003 at 08:46:22AM +1300 or so it is rumoured hereabouts,
Jim Cheetham thought:
> I have a set of machines at a hosting provider (I won't name them at
> this stage), and have just noticed that the host keys on all my machines
> are identical (actually, the whole ssh config directory is identical).
>
> I am presuming that this is a 'feature' of their build environment, and
> I have to assume that other customers of theirs with the same
> OS/version, also have the same keys.
Have you root on these machines? If so, why not just make new keys? If
not, ask hosting provider to make new keys.
Don't know enough about attacks to answer your actual question...
Conor
-- Conor Daly <conor.daly@oceanfree.net> Domestic Sysadmin :-) --------------------- Faenor.cod.ie 9:02pm up 13 days, 14:11, 0 users, load average: 0.00, 0.00, 0.00 Hobbiton.cod.ie 9:01pm up 13 days, 14:10, 1 user, load average: 0.09, 0.11, 0.04
- Previous message: Steven W. Orr: "RE: Problem with X11 forwarding."
- In reply to: Jim Cheetham: "Compromised host keys"
- Next in thread: Michael Young: "RE: Compromised host keys"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
