Narnio
~A day in the life of a software engineer~
Top posts
Latest articles
Avoid Debian Exploid using SSH
(1 votes, average: 3 out of 6)
Loading ...Not so long ago news surficed that the SSH protocol used in Debian was a lot less then secure. It appears that you can easily guess the key used for the encryption of all data send between the client and the server.
This would mean anyone could hack your debian server by just listening in to the communication between you and it. This is of course not what you want so here are a few easy steps to upgrade the faulty components.
- First you must update the apt by entering apt-get update
- After this it’s time to update the SSL libraries by entering apt-get install libssl0.9.8
- Know that the encryption is a lot more secure again its time to generate new keys for the server this can be done by executing the following line:
ssh-keygen -N ” -t dsa -f /etc/ssh/ssh_host_dsa_key - Also update the RSA key by entering:
ssh-keygen -N ” -t rsa -f /etc/ssh/ssh_host_rsa_key - Last but not least is restarting the SSH service to complete the update, this is done by running:
/etc/init.d/ssh restart
Please note that after doing this and reconnecting you will most likely get a warning stating the server changed certificates. Which is true as you’ve done just that in the above steps.
.net
apache
authentication
awstats
beta
clix 2
connection timeout
debian
debugging
Development
digital TV
dovecot
employement
exploid
gadget
google
hdp 15
HTPC
illegalstateexception
instruments
java
mailserver
media portal
MOLAP processing
mp3 player
music
netbeans
OLAP
photo
plugin
postfix
property grid
sessions
smtp
sql server
SSH
SSL
statistics
synch
tools
upgrade
VPS
website
wordpress
work
