bugzilla-daemon at bugzilla.mindrot.org
2008-Aug-29 06:58 UTC
[Bug 1516] New: ssh-keygen should warn about keys larger than OPENSSL_RSA_MAX_MODULUS_BITS
https://bugzilla.mindrot.org/show_bug.cgi?id=1516
Summary: ssh-keygen should warn about keys larger than
OPENSSL_RSA_MAX_MODULUS_BITS
Product: Portable OpenSSH
Version: 5.1p1
Platform: All
URL: http://www.hermann-uwe.de/blog/creating-32768-bit-rsa-
keys-for-fun-and-profit
OS/Version: All
Status: NEW
Severity: minor
Priority: P2
Component: ssh-keygen
AssignedTo: unassigned-bugs at mindrot.org
ReportedBy: t8m at centrum.cz
When ssh-keygen generates key which is larger than
OPENSSL_RSA_MAX_MODULUS_BITS (as defined in the current OpenSSL
releases) it should warn the user that the key will probably not be
usable. The current OpenSSL releases check if the key is larger and the
signature verification functions will fail for such keys to prevent
CVE-2006-2940.
--
Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.
bugzilla-daemon at bugzilla.mindrot.org
2010-Apr-23 01:43 UTC
[Bug 1516] ssh-keygen should warn about keys larger than OPENSSL_RSA_MAX_MODULUS_BITS
https://bugzilla.mindrot.org/show_bug.cgi?id=1516 --- Comment #1 from Damien Miller <djm at mindrot.org> 2010-04-23 11:43:18 EST --- Created an attachment (id=1843) --> (https://bugzilla.mindrot.org/attachment.cgi?id=1843) keygen-max-bits.diff limit maximum key size -- Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are watching the assignee of the bug.
bugzilla-daemon at bugzilla.mindrot.org
2010-Apr-23 01:44 UTC
[Bug 1516] ssh-keygen should warn about keys larger than OPENSSL_RSA_MAX_MODULUS_BITS
https://bugzilla.mindrot.org/show_bug.cgi?id=1516
Damien Miller <djm at mindrot.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Attachment #1843| |ok?(dtucker at zip.com.au)
Flag| |
--
Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.
bugzilla-daemon at bugzilla.mindrot.org
2010-Apr-23 01:44 UTC
[Bug 1516] ssh-keygen should warn about keys larger than OPENSSL_RSA_MAX_MODULUS_BITS
https://bugzilla.mindrot.org/show_bug.cgi?id=1516
Damien Miller <djm at mindrot.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |djm at mindrot.org
Blocks| |1708
--
Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.
bugzilla-daemon at bugzilla.mindrot.org
2010-Apr-23 07:52 UTC
[Bug 1516] ssh-keygen should warn about keys larger than OPENSSL_RSA_MAX_MODULUS_BITS
https://bugzilla.mindrot.org/show_bug.cgi?id=1516
Darren Tucker <dtucker at zip.com.au> changed:
What |Removed |Added
----------------------------------------------------------------------------
Attachment #1843|ok?(dtucker at zip.com.au) |ok+
Flag| |
--
Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.
bugzilla-daemon at bugzilla.mindrot.org
2010-Apr-23 22:49 UTC
[Bug 1516] ssh-keygen should warn about keys larger than OPENSSL_RSA_MAX_MODULUS_BITS
https://bugzilla.mindrot.org/show_bug.cgi?id=1516
Damien Miller <djm at mindrot.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |RESOLVED
Resolution| |FIXED
--- Comment #2 from Damien Miller <djm at mindrot.org> ---
Patch applied. Will be in OpenSSH 5.6 - thanks.
--
Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.
bugzilla-daemon at bugzilla.mindrot.org
2011-Jan-24 01:34 UTC
[Bug 1516] ssh-keygen should warn about keys larger than OPENSSL_RSA_MAX_MODULUS_BITS
https://bugzilla.mindrot.org/show_bug.cgi?id=1516
Damien Miller <djm at mindrot.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|RESOLVED |CLOSED
--- Comment #3 from Damien Miller <djm at mindrot.org> 2011-01-24 12:34:02
EST ---
Move resolved bugs to CLOSED after 5.7 release
--
Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.