Gentoo Logo
Gentoo Spaceship




Note: Due to technical difficulties, the Archives are currently not up to date. GMANE provides an alternative service for most mailing lists.
c.f. bug 424647
List Archive: gentoo-security
Navigation:
Lists: gentoo-security: < Prev By Thread Next > < Prev By Date Next >
Headers:
To: gentoo-security@g.o
From: Robert Buchholz <rbu@g.o>
Subject: Re: ssl weak key generation (supposed to effect only debian)
Date: Sat, 17 May 2008 13:15:07 +0200
Hi Peter,

On Saturday, 17. May 2008, Peter Schneider-Kamp wrote:
> the recently publicized SSL weak key generation for debian-based systems
> (c.f. http://www.debian.org/security/key-rollover/)
> has lead our university computing center to retract our
> Gentoo-generated SSL keys based on an advisory from the German
> DFN cert :-(

I could not find where these advisories are published on their site, I 
guess they are not publicly distributed.


> I have not found any information about whether this might also
> affect Gentoo systems. A test with the Perl script from
> http://security.debian.org/project/extra/dowkd/dowkd.pl.gz
> does not show vulnerability:
> ~  summary: keys found: 2, weak keys: 0
>
> So I guess that Gentoo-generated keys are not affected.
> Still it would be nice to have an official statement
> to prevent official certification bodies from retracting
> valid Gentoo-generated keys.

The Gentoo Security Team internally reviewed patches to 
our "dev-libs/openssl" package right when we heard about the issue via a 
private channel. We could confirm that the patch is not included in our 
distribution. Furthermore, additional tests showed that there is no 
dependence only on PID when generating keys, and that some Gentoo produced 
keys are not included in the blacklist (which you also confirmed).

We issued no formal statement*, because Debian was so clear about the scope 
of the vulnerability. To think that any distribution is affected, simply 
because they do not publicly state they are not, is a bad habit. Other 
CERTs usually contact us for vendor statements when they think we are 
affected by one vulnerability.

The only thing compromising DSA keys generated on Gentoo is the usage of 
the private key on an affected Debian, but even that was covered in both 
the Debian and Ubuntu advisories.

Regards,
Robert // Gentoo Security


* I would not consider my blog entry on http://planet.gentoo.org a
  formal statement.


Attachment:
signature.asc (This is a digitally signed message part.)
Replies:
Re: ssl weak key generation (supposed to effect only debian)
-- Byron
References:
ssl weak key generation (supposed to effect only debian)
-- Peter Schneider-Kamp
Navigation:
Lists: gentoo-security: < Prev By Thread Next > < Prev By Date Next >
Previous by thread:
ssl weak key generation (supposed to effect only debian)
Next by thread:
Re: ssl weak key generation (supposed to effect only debian)
Previous by date:
ssl weak key generation (supposed to effect only debian)
Next by date:
Re: ssl weak key generation (supposed to effect only debian)


Updated Oct 31, 2011

Summary: Archive of the gentoo-security mailing list.

Donate to support our development efforts.

Copyright 2001-2013 Gentoo Foundation, Inc. Questions, Comments? Contact us.