Debian and Ubuntu keys under attack

Friday, May 16 2008 @ 05:22 PM EDT

Contributed by: sde

A recently disclosed vulnerability in widely used Linux distributions can be exploited by attackers to guess cryptographic keys, possibly leading to the forgery of digital signatures and theft of confidential information, a noted security researcher said Thursday.

HD Moore, best known as the exploit researcher who created the Metasploit penetration testing framework, called the vulnerability in Debian and Ubuntu systems "ugly" and said it will be a big job for administrators to find every flawed key, and then re-issue them.

Read more

0 comments



http://www.linuxlinks.com/portal/news/article.php?story=20080516172241836